Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DoS Vulnerability in ntpd-rs
Vulnerability Description
nptd-rs is a tool for synchronizing your computer's clock, implementing the NTP and NTS protocols. In versions between 1.2.0 and 1.6.1 inclusive servers which allow non-NTS traffic are affected by a denial of service vulnerability, where an attacker can induce a message storm between two NTP servers running ntpd-rs. Client-only configurations are not affected. Affected users are recommended to upgrade to version 1.6.2 as soon as possible.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
对网络消息容量的控制不充分(网络放大攻击)
Vulnerability Title
ntpd-rs 安全漏洞
Vulnerability Description
ntpd-rs是Project Pendulum开源的一款用于同步计算机时钟的工具,可实现 NTP 和 NTS 协议。 ntpd-rs 1.2.0至1.6.1版本存在安全漏洞,该漏洞源于允许非NTS流量,可能导致拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A