CVE-2015-7853
published 2017-08-07CVE-2015-7853: The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a…
PriorityP355critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
11.78%
95.6th percentile
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | products_october_2015 | — | — |
| debian | ntp | < ntp 1:4.2.8p4+dfsg-1 (bullseye) | ntp 1:4.2.8p4+dfsg-1 (bullseye) |
| ntp | ntp | — | — |
| ntp | ntp | >= 0 < 1:4.2.8p4+dfsg-1 | 1:4.2.8p4+dfsg-1 |
| ntp | ntp | >= 0 < 1:4.2.6.p5+dfsg-3ubuntu2.14.04.5 | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.5 |
| ntp | ntp | >= 4.2.0 < 4.2.8 | 4.2.8 |
| ntp | ntp | >= 4.3.0 < 4.3.77 | 4.3.77 |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability exists in the refclock (reference clock) driver of ntpd; attack vector is a negative datalen/length value supplied by a hardware reference clock input, triggering a buffer overflow in memory ↗
- →Upstream patch available at the referenced GitHub commit for NTP project; patch against ntp versions 4.2.x before 4.2.8p4 and 4.3.x before 4.3.77 ↗
- →Talos Intelligence published a report on this vulnerability; reference for additional technical detail and potential detection signatures ↗
- ·Red Hat Enterprise Linux 5, 6, and 7 are NOT affected because their shipped ntp packages do not include the custom refclock driver ↗
- ·Only NTP deployments using a hardware reference clock (refclock driver) are exposed; standard NTP installations without refclock configuration are not vulnerable ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_redhat9.8CRITICAL
vendor_cisco7.5HIGH
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Siemens SIMATIC NET CP 443-1 OPC UA
cisa_ics·2021-06-08·CVSS 5.9
[MEDIUM] Siemens SIMATIC NET CP 443-1 OPC UA
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Siemens SIMATIC NET CP 443-1 OPC UA
Last RevisedJune 08, 2021
Alert CodeICSA-21-159-11
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: SIMATIC NET CP 443-1 OPC UA
- Vulnerabilities: Improper Input Validation, Improper Restriction of Operations within the Bounds of a Memory Buffer, Incorrect Calculation, Classic Buffer Overflow, Improper Authentication, Race Condition, Data Processing Errors, Exposure of Sensitive Information to an Unauthorized Actor, Out-of-bounds Read
## 2. RISK EVALUATION
Succes
CISA ICS
Rockwell Automation Stratix 5900
cisa_ics·2017-05-10
Rockwell Automation Stratix 5900
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Rockwell Automation Stratix 5900
Last RevisedMay 10, 2017
Alert CodeICSA-17-094-04
## CVSS v3 10.0
ATTENTION: Remotely exploitable/low skill level to exploit.
Vendor: Rockwell Automation
Equipment: Stratix 5900
Vulnerabilities: Improper Input Validation, Resource Management Errors, Improper Authentication, Path Traversal.
## REPOSTED INFORMATION
This advisory was originally posted to the NCCIC Portal on April 4, 2017, and is being released to the NCCIC/ICS-CERT web site.
## AFFECTED PRODUCTS
Rockwell Automation reports that these vulnerabilities affect the following Strat
Ubuntu
NTP vulnerabilities
vendor_ubuntu·2015-10-27·CVSS 5.3
CVE-2015-5146 [MEDIUM] NTP vulnerabilities
Title: NTP vulnerabilities
Summary: Several security issues were fixed in NTP.
Aleksis Kauppinen discovered that NTP incorrectly handled certain remote
config packets. In a non-default configuration, a remote authenticated
attacker could possibly use this issue to cause NTP to crash, resulting in
a denial of service. (CVE-2015-5146)
Miroslav Lichvar discovered that NTP incorrectly handled logconfig
directives. In a non-default configuration, a remote authenticated attacker
could possibly use this issue to cause NTP to crash, resulting in a denial
of service. (CVE-2015-5194)
Miroslav Lichvar discovered that NTP incorrectly handled certain statistics
types. In a non-default configuration, a remote authenticated attacker
could possibly use this issue to cause NTP to crash, resulting in a
BSD
FreeBSD-SA-15:25.ntp: Multiple vulnerabilities of ntp [REVISED]
bsd_advisories·2015-10-26·CVSS 7.5
CVE-2014-9750 [HIGH] FreeBSD-SA-15:25.ntp: Multiple vulnerabilities of ntp [REVISED]
FreeBSD-SA-15:25.ntp Security Advisory
The FreeBSD Project
Topic: Multiple vulnerabilities of ntp [REVISED]
Category: contrib
Module: ntp
Announced: 2015-10-26, revised on 2015-11-04
Credits: Network Time Foundation
Affects: All supported versions of FreeBSD.
Corrected: 2015-10-26 11:35:40 UTC (stable/10, 10.2-STABLE)
2015-11-04 11:27:13 UTC (releng/10.2, 10.2-RELEASE-p7)
2015-11-04 11:27:21 UTC (releng/10.1, 10.1-RELEASE-p24)
2015-11-02 10:39:26 UTC (stable/9, 9.3-STABLE)
2015-11-04 11:27:30 UTC (releng/9.3, 9.3-RELEASE-p30)
CVE Name: CVE-2015-7701, CVE-2015-7702, CVE-2015-7703, CVE-2015-7704,
CVE-2015-7848, CVE-2015-7849, CVE-2015-7850, CVE-2015-7851,
CVE-2015-7852, CVE-2015-7853, CVE-2015-7854, CVE-2015-7855,
CVE-2015-7871
For general information regarding FreeBSD Security Advisories
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco·2015-10-22·CVSS 7.5
CVE-2015-7691 [HIGH] CWE-119 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server.
On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows:
CVE-2015-7691 - Denial of Service AutoKey Malicious Message
C
Red Hat
ntp: reference clock memory corruption vulnerability
vendor_redhat·2015-10-21·CVSS 9.8
CVE-2015-7853 [CRITICAL] ntp: reference clock memory corruption vulnerability
ntp: reference clock memory corruption vulnerability
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Statement: This issue did not affect the versions of ntp as shipped with Red Hat Enterprise Linux 5, 6, and 7 as they do not include the custom refclock driver.
Package: ntp (Red Hat Enterprise Linux 5) - Not affected
Package: ntp (Red Hat Enterprise Linux 6) - Not affected
Package: ntp (Red Hat Enterprise Linux 7) - Not affected
Debian
CVE-2015-7853: ntp - The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4....
vendor_debian·2015·CVSS 9.8
CVE-2015-7853 [CRITICAL] CVE-2015-7853: ntp - The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4....
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Scope: local
bullseye: resolved (fixed in 1:4.2.8p4+dfsg-1)
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7852 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7852: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7871 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7871: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7850 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7850: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7704 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7704: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7855 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7855: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7853 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7853: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7851 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7851: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7705 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7705: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7849 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7849: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7703 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7703: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7854 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7854: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7702 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7702: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7701 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7701: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7691 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7691: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7848 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7848: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
Cisco
Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
vendor_cisco
CVE-2015-7692 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
CVE-2015-7692: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server. On October 21st, 2015, NTP.org released a security advisory detailing 13 issues regarding multiple DoS vulnerabilities, information disclosure vulnerabilities, and logic issues that may result in an attacker gaining the ability to modify an NTP server's advertised time. The vulnerabilities covered in this document are as follows: CVE-2015-7691 - Denial of Service AutoKey Malicio
GHSA
GHSA-m46c-h6cr-xhm7: The datalen parameter in the refclock driver in NTP 4
ghsa_unreviewed·2022-05-13
CVE-2015-7853 [CRITICAL] CWE-120 GHSA-m46c-h6cr-xhm7: The datalen parameter in the refclock driver in NTP 4
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.
OSV
CVE-2015-7853: The datalen parameter in the refclock driver in NTP 4
osv·2017-08-07·CVSS 9.8
CVE-2015-7853 [CRITICAL] CVE-2015-7853: The datalen parameter in the refclock driver in NTP 4
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.
OSV
ntp vulnerabilities
osv·2015-10-27·CVSS 5.3
CVE-2015-5146 [MEDIUM] ntp vulnerabilities
ntp vulnerabilities
Aleksis Kauppinen discovered that NTP incorrectly handled certain remote
config packets. In a non-default configuration, a remote authenticated
attacker could possibly use this issue to cause NTP to crash, resulting in
a denial of service. (CVE-2015-5146)
Miroslav Lichvar discovered that NTP incorrectly handled logconfig
directives. In a non-default configuration, a remote authenticated attacker
could possibly use this issue to cause NTP to crash, resulting in a denial
of service. (CVE-2015-5194)
Miroslav Lichvar discovered that NTP incorrectly handled certain statistics
types. In a non-default configuration, a remote authenticated attacker
could possibly use this issue to cause NTP to crash, resulting in a denial
of service. (CVE-2015-5195)
Miroslav Lichvar discove
No detection rules found.
No public exploits indexed.
Talos
Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)
blogs_talos·2015-10-21
Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)
## Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)
Cisco is committed to improving the overall security of the products and services our customers rely on. As part of this commitment, Cisco assesses the security of software components used in our products. Open source software plays a key role in many Cisco products and as a result, ensuring the security of open source software components is vital, especially in the wake of major vulnerabilities such as Heartbleed and Shellshock.
In April 2014, the Linux Foundation spearheaded the creation of the Core Infrastructure Initiative in response to the disclosure of Heartbleed with the goal of securing open source projects that are widely used on the internet. As a member of the Linux Foundation Core Infrastruct
Talos
Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)
blogs_talos·2015-10-21
Cisco Identifies Multiple Vulnerabilities in Network Time Protocol daemon (ntpd)
Cisco is committed to improving the overall security of the products and services our customers rely on. As part of this commitment, Cisco assesses the security of software components used in our products. Open source software plays a key role in many Cisco products and as a result, ensuring the security of open source software components is vital, especially in the wake of major vulnerabilities such as Heartbleed and Shellshock.
In April 2014, the Linux Foundation spearheaded the creation of the Core Infrastructure Initiative in response to the disclosure of Heartbleed with the goal of securing open source projects that are widely used on the internet. As a member of the Linux Foundation Core Infrastructure Initiative (CII) Steering Group, Cisco is contributing to the CII effort by evalu
Bugzilla
CVE-2015-7853 ntp: reference clock memory corruption vulnerability [fedora-all]
bugzilla·2016-01-06·CVSS 9.8
CVE-2015-7853 [CRITICAL] CVE-2015-7853 ntp: reference clock memory corruption vulnerability [fedora-all]
CVE-2015-7853 ntp: reference clock memory corruption vulnerability [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions o
Bugzilla
CVE-2015-7853 ntp: reference clock memory corruption vulnerability
bugzilla·2015-10-22·CVSS 9.8
CVE-2015-7853 [CRITICAL] CVE-2015-7853 ntp: reference clock memory corruption vulnerability
CVE-2015-7853 ntp: reference clock memory corruption vulnerability
The following flaw was found in ntpd:
A potential buffer overflow vulnerability exists in the refclock of ntpd. An invalid length provided by a hardware reference clock could cause a buffer overflow potentially resulting in memory being modified. A malicious reflock could provide a negative length to trigger this vulnerability.
External References:
http://talosintel.com/reports/TALOS-2015-0064/
http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
Discussion:
Upstream patch:
https://github.com/ntp-project/ntp/commit/8482b536f9494a5d45196ab5b7e13040f5940261
---
Created ntp tracking bugs for this issue:
Affects: fedora-all [bug 1296163]
---
Statement:
This issue did not affect the v
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00020.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.htmlhttp://lists.opensuse.org/opensuse-updates/2015-11/msg00093.htmlhttp://lists.opensuse.org/opensuse-updates/2016-05/msg00114.htmlhttp://packetstormsecurity.com/files/134082/FreeBSD-Security-Advisory-ntp-Authentication-Bypass.htmlhttp://packetstormsecurity.com/files/134137/Slackware-Security-Advisory-ntp-Updates.htmlhttp://support.ntp.org/bin/view/Main/NtpBug2920http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-ntphttp://www.securityfocus.com/archive/1/536737/100/0/threadedhttp://www.securityfocus.com/archive/1/536760/100/0/threadedhttp://www.securityfocus.com/archive/1/536796/100/0/threadedhttp://www.securityfocus.com/archive/1/536833/100/0/threadedhttp://www.securityfocus.com/archive/1/archive/1/536737/100/100/threadedhttp://www.securityfocus.com/archive/1/archive/1/536760/100/100/threadedhttp://www.securityfocus.com/archive/1/archive/1/536796/100/100/threadedhttp://www.securityfocus.com/archive/1/archive/1/536833/100/100/threadedhttp://www.securityfocus.com/bid/77273http://www.securitytracker.com/id/1033951http://www.talosintel.com/vulnerability-reports/http://www.ubuntu.com/usn/USN-2783-1https://bto.bluecoat.com/security-advisory/sa103https://bugzilla.redhat.com/show_bug.cgi?id=1274262https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdfhttps://security.gentoo.org/glsa/201607-15https://security.netapp.com/advisory/ntap-20171004-0001/https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00020.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.htmlhttp://lists.opensuse.org/opensuse-updates/2015-11/msg00093.htmlhttp://lists.opensuse.org/opensuse-updates/2016-05/msg00114.htmlhttp://packetstormsecurity.com/files/134082/FreeBSD-Security-Advisory-ntp-Authentication-Bypass.htmlhttp://packetstormsecurity.com/files/134137/Slackware-Security-Advisory-ntp-Updates.htmlhttp://support.ntp.org/bin/view/Main/NtpBug2920http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-ntphttp://www.securityfocus.com/archive/1/536737/100/0/threadedhttp://www.securityfocus.com/archive/1/536760/100/0/threadedhttp://www.securityfocus.com/archive/1/536796/100/0/threadedhttp://www.securityfocus.com/archive/1/536833/100/0/threadedhttp://www.securityfocus.com/archive/1/archive/1/536737/100/100/threadedhttp://www.securityfocus.com/archive/1/archive/1/536760/100/100/threadedhttp://www.securityfocus.com/archive/1/archive/1/536796/100/100/threadedhttp://www.securityfocus.com/archive/1/archive/1/536833/100/100/threadedhttp://www.securityfocus.com/bid/77273http://www.securitytracker.com/id/1033951http://www.talosintel.com/vulnerability-reports/http://www.ubuntu.com/usn/USN-2783-1https://bto.bluecoat.com/security-advisory/sa103https://bugzilla.redhat.com/show_bug.cgi?id=1274262https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdfhttps://security.gentoo.org/glsa/201607-15https://security.netapp.com/advisory/ntap-20171004-0001/https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11
2017-08-07
Published