#VU626 Denial of service - CVE-2015-7871
Published: September 22, 2016 / Updated: September 14, 2018
Vulnerability identifier: #VU626
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:A/U:Clear
CVE-ID: CVE-2015-7871
CWE-ID: CWE-284
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vulnerable software:
Software vendor:
Description
The vulnerability allows a remote user to cause denial of service on the target system.
The weakness exists due to security bypass in NTP and allows attackers to perform DoS attack.
Successful exploitation of the vulnerability may result in denial of service on the vulnerable system.
The weakness exists due to security bypass in NTP and allows attackers to perform DoS attack.
Successful exploitation of the vulnerability may result in denial of service on the vulnerable system.
Remediation
To resolve the vulnerability HPE has released the software available at the site:
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05270839
http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05270839