Oval Definition:	oval:com.ubuntu.precise:def:20149293000
Revision Date: 2014-12-19 Version: 1 Title: CVE-2014-9293 on Ubuntu 12.04 LTS (precise) - medium. Description: The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-9293 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'ntp' package in precise was vulnerable but has been fixed (note: '1:4.2.6.p3+dfsg-1ubuntu3.2').
BACK