NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-01-13T16:00:00

Updated: 2024-08-06T01:57:47.647Z

Reserved: 2016-09-09T00:00:00

Link: CVE-2016-7426

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2017-01-13T16:59:00.323

Modified: 2020-06-18T18:14:21.607

Link: CVE-2016-7426

cve-icon Redhat

Severity : Moderate

Publid Date: 2016-11-21T00:00:00Z

Links: CVE-2016-7426 - Bugzilla