cvedb.io
CVE-2015-5146
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2017-08-24T20:29:00.313 · Last modified 2026-06-17T00:28:33.280

Summary

ntpd in ntp before 4.2.8p3 with remote configuration enabled allows remote authenticated users with knowledge of the configuration password and access to a computer entrusted to perform remote configuration to cause a denial of service (service crash) via a NULL byte in a crafted configuration directive packet.

Affected products

fedoraproject — fedora

Does this affect you?

Add your gear to cvedb and we'll alert you only when fedoraproject ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.