CVE-2016-1547

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions NTP versions 4.2.8p4 and earlier NTPSec version a5fb34b9cc89b92a8fef2f459004865c93bb7f92

Description An off-path attacker can cause a preemptible client association to be demobilized by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This issue persists even when authentication is enabled.

Recommendations For NTP versions 4.2.8p4 and earlier, consider disabling the preemptible client association feature until a patch is available. For NTPSec version a5fb34b9cc89b92a8fef2f459004865c93bb7f92, restrict access to the crypto NAK packet handling mechanism to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALT-PU-2017-2335

CESA-2016_1141

CVE-2016-1547

DLA-559-1

DSA-3629-1

FREEBSD-SA-16_16

OPENSUSE-SU-2016_1329-1

OPENSUSE-SU-2024:10181-1

RHSA-2016:1141

RHSA-2016:1552

RHSA-2016_1141

SUSE-SU-2016:1278-1

SUSE-SU-2016:1291-1

SUSE-SU-2016:1471-1

SUSE-SU-2016:1568-1

USN-3096-1

Affected Products

Alt Linux

Centos

Cisco Ios Xr

Freebsd

Ntp

Ntpsec

Red Hat

Suse

Ubuntu

CVE-2016-1547

Weakness Enumeration

Related Identifiers

Affected Products

References · 134