vulnerability

Ubuntu: USN-3096-1 (CVE-2016-1550): NTP vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Oct 5, 2016	Oct 7, 2016	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Oct 5, 2016

Added

Oct 7, 2016

Modified

Mar 27, 2026

Description

An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.

Solution

ubuntu-upgrade-ntp

References

CVE-2016-1550
https://attackerkb.com/topics/CVE-2016-1550
CWE-200
DEBIAN-DLA-559-1
DEBIAN-DSA-3629
EUVD-EUVD-2016-2645
NVD-CVE-2016-1550
UBUNTU-USN-3096-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2016-2645

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report