Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2015-5300

The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option, or to alter the time by up to 900 seconds otherwise by responding to an unspecified number of requests from trusted sources, and leveraging a resulting denial of service (abort and restart).

  • Published: Jul 21, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-5300
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
fedoraproject / fedora 22 22.x
fedoraproject / fedora 21 21.x
suse / linux_enterprise_server 11-sp4 11-sp4.x
suse / manager_proxy 2.1 2.1.x
suse / linux_enterprise_debuginfo 11-sp3 11-sp3.x
suse / linux_enterprise_software_development_kit 12-sp1 12-sp1.x
suse / manager 2.1 2.1.x
suse / linux_enterprise_debuginfo 11-sp2 11-sp2.x
suse / linux_enterprise_server 11-sp3 11-sp3.x
suse / linux_enterprise_software_development_kit 12 12.x
suse / linux_enterprise_server 12-sp1 12-sp1.x
suse / openstack_cloud 5 5.x
suse / linux_enterprise_desktop 12 12.x
suse / linux_enterprise_debuginfo 11-sp4 11-sp4.x
suse / linux_enterprise_server 11-sp2 11-sp2.x
suse / linux_enterprise_desktop 12-sp1 12-sp1.x
suse / linux_enterprise_server 10-sp4 10-sp4.x
opensuse / leap 42.1 42.1.x
opensuse / opensuse 13.2 13.2.x
suse / suse_linux_enterprise_server 12 12.x
redhat / enterprise_linux_desktop 7.0 7.0.x
redhat / enterprise_linux_workstation 7.0 7.0.x
redhat / enterprise_linux_server_eus 6.7.z 6.7.z.x
redhat / enterprise_linux_server 7.0 7.0.x
redhat / enterprise_linux_hpc_node 6.0 6.0.x
redhat / enterprise_linux_hpc_node 7.0 7.0.x
redhat / enterprise_linux_server_eus 7.1 7.1.x
redhat / enterprise_linux_desktop 6.0 6.0.x
redhat / enterprise_linux_server 6.0 6.0.x
redhat / enterprise_linux_hpc_node_eus 7.1 7.1.x
redhat / enterprise_linux_workstation 6.0 6.0.x
debian / debian_linux 8.0 8.0.x
debian / debian_linux 7.0 7.0.x
canonical / ubuntu_linux 12.04 12.04.x
canonical / ubuntu_linux 15.10 15.10.x
canonical / ubuntu_linux 14.04 14.04.x
canonical / ubuntu_linux 15.04 15.04.x
ntp / ntp - 4.2.8.x