Denial of service - CVE-2015-7855
Published: September 22, 2016 / Updated: September 14, 2018
Vulnerability identifier: #VU625
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear
CVE-ID: CVE-2015-7855
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vendor:
Affected software:
Detailed vulnerability description
The vulnerability allows a remote user to cause denial of service on the target system.
The weakness exists due to security bypass in NTP and allows attackers to perform DoS attack.
Successful exploitation of the vulnerability may result in denial of service on the vulnerable system.
The weakness exists due to security bypass in NTP and allows attackers to perform DoS attack.
Successful exploitation of the vulnerability may result in denial of service on the vulnerable system.
How to mitigate CVE-2015-7855
To resolve the vulnerability HPE has released the software available at the site:
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05270839
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05270839