PT-2014-1838 · Ntp+9 · Ntp+10

Published

2014-12-19

·

Updated

2024-06-15

·

CVE-2014-9293

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions NTP versions prior to 4.2.7p11 NTP versions 4.2.6p5 and earlier
Description The issue is related to the config auth function in NTP, which generates a cryptographically-weak default key when no authentication key is defined. This makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack. The vulnerability can be exploited remotely and may lead to a violation of confidentiality, integrity, and availability of protected information.
Recommendations For NTP versions prior to 4.2.7p11, update to version 4.2.7p11 or later to resolve the issue. For NTP versions 4.2.6p5 and earlier, consider disabling the config auth function until a patch is available. As a temporary workaround, restrict access to the NTP service to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-335

Related Identifiers

ALT-PU-2014-2486
BDU:2015-06449
BDU:2015-06450
BDU:2015-06451
BDU:2015-06452
BDU:2015-06453
BDU:2015-06454
BDU:2015-06537
BDU:2015-09293
BDU:2015-09294
BDU:2015-09295
BDU:2015-09296
BDU:2015-09297
BDU:2015-09298
BDU:2015-09299
BDU:2015-09799
BDU:2015-09870
BDU:2015-09871
BDU:2015-09872
BDU:2015-09873
CESA-2014_2024
CVE-2014-9293
DLA-116-1
DSA-3108-1
HPSBUX03240
MGASA-2014-0541
OPENSUSE-SU-2024:10181-1
RHSA-2014:2024
RHSA-2014:2025
RHSA-2014_2024
RHSA-2014_2025
RHSA-2015:0104
SUSE-SU-2015:0259-1
SUSE-SU-2015:0259-2
SUSE-SU-2015:0259-3
SUSE-SU-2015:0274-1
SUSE-SU-2015:1173-1
SUSE-SU-2015_0259-1
SUSE-SU-2015_0259-2
SUSE-SU-2015_0259-3
SUSE-SU-2015_0274-1
SUSE-SU-2015_0322-1
USN-2449-1

Affected Products

Alt Linux
Centos
Check Point Gaia
Cisco Ios Xr
Cisco Nexus
Hp-Ux
Ibm Aix
Ntp
Red Hat
Suse
Ubuntu