Endpoint Vulnerability

Refclock impersonation vulnerability

Description

While the majority OSes implement martian packet filtering in their network stack, at least regarding 127.0.0.0/8, a rare few will allow packets claiming to be from 127.0.0.0/8 that arrive over physical network. On these OSes, if

Affected Products

NTP

References

CVE-2016-1551,