CVE-2015-1799 — Improper Authentication in NTP

CWE-17 CWE-287 — Improper Authentication CWE-39916 documents11 sources

Severity

4.3MEDIUMNVD

OSV1.8

EPSS

0.6%

top 29.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

NTP Debian NTP Apple OS X Yosemite V10.10.4 AND Security Update 2015-005 +1 more

Timeline

PublishedApr 8

Latest updateMay 14

Description

The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easier for man-in-the-middle attackers to cause a denial of service (synchronization loss) by spoofing the source IP address of a peer.

CVSS vector

AV:A/AC:M/C:N/I:P/A:PExploitability: 5.5 | Impact: 4.9

Affected Packages6 packages

▶debiandebian/ntp< ntp 1:4.2.6.p5+dfsg-6 (bullseye)

▶Debianntp/ntp< 1:4.2.6.p5+dfsg-6

▶Ubuntuntp/ntp< 1:4.2.6.p5+dfsg-3ubuntu2.14.04.3

▶NVDntp/ntp4.2.7p444

▶ciscocisco/products

🔴Vulnerability Details

GHSA

GHSA-q9p8-4cvj-q5fj: The symmetric-key feature in the receive function in ntp_proto↗2022-05-14

▶

OSV

ntp vulnerabilities↗2015-04-13

▶

OSV

CVE-2015-1799: The symmetric-key feature in the receive function in ntp_proto↗2015-04-08

▶

📋Vendor Advisories

CISA ICS

Rockwell Automation Stratix 5900↗2017-05-10

▶

Ubuntu

NTP vulnerabilities↗2015-04-13

▶

Cisco

Multiple Vulnerabilities in ntpd (April 2015) Affecting Cisco Products↗2015-04-08

▶

Cisco

Network Time Protocol Daemon Symmetric Mode Packet Processing Denial of Service Vulnerability↗2015-04-08

▶

BSD

FreeBSD-SA-15:07.ntp: Multiple vulnerabilities of ntp↗2015-04-07

▶

💬Community

Bugzilla

CVE-2015-1798 CVE-2015-1799 ntp: various flaws [fedora-all]↗2015-04-07

▶

Bugzilla

CVE-2015-1799 ntp: authentication doesn't protect symmetric associations against DoS attacks↗2015-03-06

▶