CVE-2016-9310

MEDIUM

NTP <4.2.8p9 - RCE

Title source: llm

Description

The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.

References (12)

Scores

CVSS v3 6.5
EPSS 0.0223
EPSS Percentile 84.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Classification

CWE
CWE-400
Status published

Affected Products (2)

ntp/ntp < 4.2.8
n/a/n/a

Timeline

Published Jan 13, 2017
Tracked Since Feb 18, 2026