CVE-2015-7848Integer Overflow or Wraparound in NTP

CWE-190Integer Overflow or WraparoundCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-20Improper Input ValidationCWE-22Path TraversalCWE-264CWE-287Improper AuthenticationCWE-39927 documents10 sources
Severity
7.5HIGHNVD
EPSS
1.3%
top 20.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
NTPDebian NTPCisco Products October 2015
Timeline
PublishedJan 6
Latest updateMay 17

Description

An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP daemon, it leads to an immediate crash.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

NVDntp/ntp4.04.2.8+2
debiandebian/ntp< ntp 1:4.2.8p4+dfsg-1 (bullseye)
Debianntp/ntp< 1:4.2.8p4+dfsg-1

🔴Vulnerability Details

2
GHSA
GHSA-wpfq-v5vr-q6vg: An integer overflow can occur in NTP-dev2022-05-17
OSV
CVE-2015-7848: An integer overflow can occur in NTP-dev2017-01-06

📋Vendor Advisories

21
CISA ICS
Rockwell Automation Stratix 59002017-05-10
BSD
FreeBSD-SA-15:25.ntp: Multiple vulnerabilities of ntp [REVISED]2015-10-26
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 20152015-10-22
Red Hat
ntp: multiple integer overflow read access violations2015-10-21
Debian
CVE-2015-7848: ntp - An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memo...2015

🕵️Threat Intelligence

2
Talos
Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)2015-10-21
Talos
Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)2015-10-21

💬Community

1
Bugzilla
CVE-2015-7848 ntp: multiple integer overflow read access violations2015-10-22