CVE-2015-8139
Public on 2016-08-01
Modified on 2017-01-04
Description
ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.
CVSS v3 Base Score
See breakdown
ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.
| Platform | Package | Release Date | Advisory |
|---|---|---|---|
| Amazon Linux 1 | ntp | 2016-08-01 | ALAS-2016-727 |
| Score Type | Score | Vector | |
|---|---|---|---|
| Amazon Linux | CVSSv2 | 6.4 | AV:N/AC:L/Au:N/C:P/I:P/A:N |
| NVD | CVSSv2 | 5.0 | AV:N/AC:L/Au:N/C:N/I:P/A:N |
| NVD | CVSSv3 | 5.3 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
