CVE-2014-9296

Name of the Vulnerable Software and Affected Versions ntp versions prior to 4.2.8 ntpd versions prior to 4.2.8 sntp-4.2.6p5 ntpdate-4.2.6p5 ntp-debuginfo-4.2.6p5 ntp-perl-4.2.6p5 ntp-4.2.6p5 ntp-doc-4.2.6p5

Description The receive function in ntp proto.c in ntpd continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets. Multiple vulnerabilities in the ntp package can lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely.

Recommendations For ntp versions prior to 4.2.8, update to version 4.2.8 or later. For sntp-4.2.6p5, ntpdate-4.2.6p5, ntp-debuginfo-4.2.6p5, ntp-perl-4.2.6p5, ntp-4.2.6p5, and ntp-doc-4.2.6p5, consider disabling the receive function in ntp proto.c as a temporary workaround until a patch is available. Restrict access to the ntp package to minimize the risk of exploitation. Avoid using the ntp package until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability for some of the affected packages.