Security Alerts & News
by Tymoteusz A. Góral

History
#1735 Exploit code released for NTP vulnerability
A researcher has released a proof-of-concept exploit for a vulnerability in the Network Time Protocol daemon that could crash a server with a single, malformed packet.

The Network Time Foundation’s NTP Project on Monday patched the bug and nine others with the release of NTP 4.2.8p9.

The vulnerability affected NTP 4.2.7p22 up to NTP 4.2.8p9, and ntp-4.3.0 up to, but not including ntp-4.3.94, researcher Magnus Stubman said.

Stubman released an exploit on Monday that crashes the NTP daemon and creates a denial-of-service condition.
Read more
#1739 Siemens-branded CCTV webcams require urgent firmware patch
#1738 Ransomware abusing encrypted chat app Telegram protocol cracked
#1737 Great. Now even your headphones can spy on you
#1736 WordPress plugins leave BlackFriday shoppers vulnerable
#1735 Exploit code released for NTP vulnerability
#1734 Elegant 0-day unicorn underscores “serious concerns” about Linux security
#1733 Cisco: Security landscape plagued by too many vendors
#1732 InPage zero-day used in attacks against banks
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12