CVE-2015-7974Improper Authentication in NTP

CWE-287Improper AuthenticationCWE-304Missing Critical Step in AuthenticationCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-20Improper Input ValidationCWE-200Sensitive Information ExposureCWE-399CWE-400Uncontrolled Resource Consumption24 documents11 sources
Severity
7.7HIGHNVD
OSV6.5
EPSS
7.8%
top 8.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
NTPDebian NTPDebian Linux+1 more
Timeline
PublishedJan 26
Latest updateMay 13

Description

NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:NExploitability: 3.1 | Impact: 4.0

Affected Packages5 packages

NVDntp/ntp4.2.04.2.8+2
debiandebian/ntp< ntp 1:4.2.8p7+dfsg-1 (bullseye)
Debianntp/ntp< 1:4.2.8p7+dfsg-1
Ubuntuntp/ntp< 1:4.2.6.p5+dfsg-3ubuntu2.14.04.10+1
Palo Altopaloalto/pan-os

Also affects: Debian Linux 8.0, 9.0

🔴Vulnerability Details

3
GHSA
GHSA-26v6-r4x8-vv44: NTP 42022-05-13
OSV
ntp vulnerabilities2016-10-05
OSV
CVE-2015-7974: NTP 42016-01-26

📋Vendor Advisories

18
CISA ICS
Siemens TIM 4R-IE Devices2021-04-13
Ubuntu
NTP vulnerabilities2016-10-05
Palo Alto
PAN-SA-2016-0019 NTP Vulnerabilities2016-08-15
Cisco
Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: January 20162016-01-28
BSD
FreeBSD-SA-16:09.ntp: Multiple vulnerabilities of ntp2016-01-27

💬Community

2
Bugzilla
CVE-2015-7974 CVE-2015-8138 CVE-2015-7973 CVE-2015-7975 CVE-2015-7976 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8158 CVE-2015-8139 CVE-2015-8140 ntp: various flaws [fedora-all]2016-01-20
Bugzilla
CVE-2015-7974 ntp: missing key check allows impersonation between authenticated peers (VU#357792)2016-01-11