Palo Alto PAN-OS Local Security Checks : Palo Alto PAN-OS NTP Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.106996

Categoría: Palo Alto PAN-OS Local Security Checks

Título: Palo Alto PAN-OS NTP Vulnerabilities

Resumen: The Network Time Protocol (NTP) library has been found to contains two;vulnerabilities CVE-2016-9042 and CVE-2017-6460. Palo Alto Networks software makes use of the vulnerable library;and may be affected. This issue only affects the management plane of the firewall.

Descripción: Summary:
The Network Time Protocol (NTP) library has been found to contains two
vulnerabilities CVE-2016-9042 and CVE-2017-6460. Palo Alto Networks software makes use of the vulnerable library
and may be affected. This issue only affects the management plane of the firewall.

Affected Software/OS:
PAN-OS 6.1, PAN-OS 7.0, PAN-OS 7.1, PAN-OS 8.0.3 and earlier.

Solution:
Update to PAN-OS 7.0.18 or later, PAN-OS 7.1.12 or later, PAN-OS 8.0.4 or
later.

CVSS Score:
6.5

CVSS Vector:
AV:N/AC:L/Au:S/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-9042
BugTraq ID: 97046
http://www.securityfocus.com/bid/97046
Bugtraq: 20170412 FreeBSD Security Advisory FreeBSD-SA-17:03.ntp (Google Search)
http://www.securityfocus.com/archive/1/540403/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/540403/100/0/threaded
Bugtraq: 20170422 [slackware-security] ntp (SSA:2017-112-02) (Google Search)
http://www.securityfocus.com/archive/1/archive/1/540464/100/0/threaded
https://bto.bluecoat.com/security-advisory/sa147
https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf
https://kc.mcafee.com/corporate/index?page=content&id=SB10201
https://support.apple.com/kb/HT208144
https://support.f5.com/csp/article/K39041624
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03962en_us
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7KVLFA3J43QFIP4I7HE7KQ5FXSMJEKC6/
FreeBSD Security Advisory: FreeBSD-SA-17:03
https://security.FreeBSD.org/advisories/FreeBSD-SA-17:03.ntp.asc
http://seclists.org/fulldisclosure/2017/Sep/62
http://seclists.org/fulldisclosure/2017/Nov/7
http://packetstormsecurity.com/files/142101/FreeBSD-Security-Advisory-FreeBSD-SA-17-03.ntp.html
http://packetstormsecurity.com/files/142284/Slackware-Security-Advisory-ntp-Updates.html
https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11
https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0260
http://www.securitytracker.com/id/1038123
http://www.securitytracker.com/id/1039427
http://www.ubuntu.com/usn/USN-3349-1
Common Vulnerability Exposure (CVE) ID: CVE-2017-6460
BugTraq ID: 97052
http://www.securityfocus.com/bid/97052

Copyright Copyright (C) 2017 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.106996
Categoría:	Palo Alto PAN-OS Local Security Checks
Título:	Palo Alto PAN-OS NTP Vulnerabilities
Resumen:	The Network Time Protocol (NTP) library has been found to contains two;vulnerabilities CVE-2016-9042 and CVE-2017-6460. Palo Alto Networks software makes use of the vulnerable library;and may be affected. This issue only affects the management plane of the firewall.
Descripción:	Summary: The Network Time Protocol (NTP) library has been found to contains two vulnerabilities CVE-2016-9042 and CVE-2017-6460. Palo Alto Networks software makes use of the vulnerable library and may be affected. This issue only affects the management plane of the firewall. Affected Software/OS: PAN-OS 6.1, PAN-OS 7.0, PAN-OS 7.1, PAN-OS 8.0.3 and earlier. Solution: Update to PAN-OS 7.0.18 or later, PAN-OS 7.1.12 or later, PAN-OS 8.0.4 or later. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9042 BugTraq ID: 97046 http://www.securityfocus.com/bid/97046 Bugtraq: 20170412 FreeBSD Security Advisory FreeBSD-SA-17:03.ntp (Google Search) http://www.securityfocus.com/archive/1/540403/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/540403/100/0/threaded Bugtraq: 20170422 [slackware-security] ntp (SSA:2017-112-02) (Google Search) http://www.securityfocus.com/archive/1/archive/1/540464/100/0/threaded https://bto.bluecoat.com/security-advisory/sa147 https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf https://kc.mcafee.com/corporate/index?page=content&id=SB10201 https://support.apple.com/kb/HT208144 https://support.f5.com/csp/article/K39041624 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03962en_us https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7KVLFA3J43QFIP4I7HE7KQ5FXSMJEKC6/ FreeBSD Security Advisory: FreeBSD-SA-17:03 https://security.FreeBSD.org/advisories/FreeBSD-SA-17:03.ntp.asc http://seclists.org/fulldisclosure/2017/Sep/62 http://seclists.org/fulldisclosure/2017/Nov/7 http://packetstormsecurity.com/files/142101/FreeBSD-Security-Advisory-FreeBSD-SA-17-03.ntp.html http://packetstormsecurity.com/files/142284/Slackware-Security-Advisory-ntp-Updates.html https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11 https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0260 http://www.securitytracker.com/id/1038123 http://www.securitytracker.com/id/1039427 http://www.ubuntu.com/usn/USN-3349-1 Common Vulnerability Exposure (CVE) ID: CVE-2017-6460 BugTraq ID: 97052 http://www.securityfocus.com/bid/97052
Copyright	Copyright (C) 2017 Greenbone Networks GmbH