VYPR
Unrated severityNVD Advisory· Published Oct 6, 2015· Updated Jun 17, 2026

CVE-2014-9751

CVE-2014-9751

Description

The read_network_packet function in ntp_io.c in ntpd in NTP 4.x before 4.2.8p1 on Linux and OS X does not properly determine whether a source IP address is an IPv6 loopback address, which makes it easier for remote attackers to spoof restricted packets, and read or write to the runtime state, by leveraging the ability to reach the ntpd machine's network interface with a packet from the ::1 address.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • NTP/NTPinferred3 versions
    >=4.0,<4.2.8p1+ 2 more
    • (no CPE)range: >=4.0,<4.2.8p1
    • cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*range: >=4.2.0,<4.2.8
    • cpe:2.3:a:ntp:ntp:4.2.8:-:*:*:*:*:*:*
  • Debian/linux3 versions
    cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
  • Dave Mills/Ntpdllm-fuzzy
    Range: <4.2.8p1

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.