This script is Copyright (C) 2015-2016 Tenable Network Security, Inc.
The remote AIX host is missing a security patch.
Time Protocol (NTP) Project NTP daemon (ntpd) could allow a remote
attacker to conduct spoofing attacks, caused by insufficient entropy
in PRNG. An attacker could exploit this vulnerability to spoof the
IPv6 address ::1 to bypass ACLs and launch further attacks on the
system. Network Time Protocol (NTP) Project NTP daemon (ntpd) is
vulnerable to a denial of service, caused by an error when using
symmetric key authentication. By sending specially-crafted packets to
both peering hosts, an attacker could exploit this vulnerability to
See also :
Install the appropriate interim fix.
Risk factor :
Medium / CVSS Base Score : 4.3