Logo
Open Ticket Register Sign in
  1. Unitrends
  2. Backup
  3. General

CVE-2017-6464 ntp: Denial of Service via malformed config

CVE ID

CVE-2017-6464

DESCRIPTION

A vulnerability was discovered in the NTP server's parsing of configuration
directives. A remote, authenticated attacker could cause ntpd to crash by
sending a crafted message.

CVSS3 Base Score    5.3

Related CVEs: CVE-2017-6463, CVE-2017-6462
 

RESOLUTION

Fixed in latest Unitrends security update with
   ntp-4.2.6p5-12.el6.centos.1

LINK TO ADVISORIES

  • https://nvd.nist.gov/vuln/detail/CVE-2017-6464 https://access.redhat.com/security/cve/cve-2017-6464 https://access.redhat.com/security/cve/cve-2017-6463 https://access.redhat.com/security/cve/cve-2017-6462

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us

Browse this section

  • How to upgrade the appliance via Unitrends' media (Air Gap / Offline updates)
  • Release Notes for Recovery Series, Recovery Max, and Unitrends Backup 10.5
  • UnitrendsMSP: Remove appliance
  • Steps to perform post a successful migration steps on CentOS6 UB (CentOS6 to CentOS7)
  • Release Notes for Recovery Series, Recovery Max, and Unitrends Backup 10.4.11
  • Upgrade fails when upgrading from version 10.2 or older
  • 8006-8012 appliance disk replacement process
  • Release Notes for Recovery Series, Recovery Max, and Unitrends Backup 10.4.10
  • Gen 7, Gen 8, UMSP and MAX Appliance Datasheets
  • Release Notes for Recovery Series and Unitrends Backup 10.4.9
See more
Company
  • About us
  • Blog
  • Legal Notices
  • Privacy

Products
  • Unitrends Helix
  • Unitrends Cloud Backup
  • Unitrends Backup Software V2
  • Unitrends DRaaS
  • Unitrends Forever Cloud Storage
  • Unitrends Security Manager
  • Unitrends Compliance Manager
  • Recovery Series Backup Applicances
Helpdesk
  • My Support Account
  • Open a Ticket
  • Register

© Copyright © 2020 Unitrends