Archived Content

In an effort to keep current, the archive contains outdated information that may not reflect current policy or programs.

Vulnerabilities Identified in Network Time Protocol Daemon (ntpd)

Last Revised

The Network Time Foundation's NTP Project has has released version ntp-4.2.8p10 to address multiple vulnerabilities in ntpd. Exploitation of some of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition.

US-CERT encourages users and administrators to review the NTP Security Notice Page for vulnerability and mitigation details.