SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   ntp Vendors:   ntp.org
ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
SecurityTracker Alert ID:  1033951
SecurityTracker URL:  http://securitytracker.com/id/1033951
CVE Reference:   CVE-2015-7691, CVE-2015-7692, CVE-2015-7701, CVE-2015-7702, CVE-2015-7703, CVE-2015-7704, CVE-2015-7705, CVE-2015-7848, CVE-2015-7849, CVE-2015-7850, CVE-2015-7851, CVE-2015-7852, CVE-2015-7853, CVE-2015-7854, CVE-2015-7855, CVE-2015-7871   (Links to External Site)
Date:  Oct 23 2015
Impact:   Denial of service via network, Disclosure of system information, Disclosure of user information, Modification of system information, Modification of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 4.2.8p4
Description:   Multiple vulnerabilities were reported in ntp. A remote user can view files on the target system. A remote user can cause denial of service conditions on the target system. A remote user can bypass authentication. A remote user can modify the time on the target system.

A remote user can trigger a memory leak in CRYPTO_ASSOC [CVE-2015-7701].

A remote user can send AutoKey messages with a specially crafted AutoKey data packet length value to cause denial of service conditions [CVE-2015-7691, CVE-2015-7692, CVE-2015-7702].

A remote user can overwrite "pidfile" and "driftfile" configuration file directives [CVE-2015-7703].

A remote user can supply specially crafted data to cause denial of service conditions [CVE-2015-7704, CVE-2015-7705].

A remote user can trigger a mode 7 loop counter integer overflow in ntpd [CVE-2015-7848].

A remote user can trigger a use-after-free memory error in the processing of trusted keys [CVE-2015-7849].

A remote user can exploit a logfile-keyfile configuration flaw to cause denial of service conditions [CVE-2015-7850].

A remote user can exploit a directory traversal flaw in ntpd saveconfig [CVE-2015-7851].

A remote user can trigger a memory corruption error in the ntpq atoascii() function [CVE-2015-7852].

A remote user can supply specially crafted reference clock data to trigger a buffer overflow [CVE-2015-7853].

A remote user can supply a specially crafted password value to trigger a memory corruption error [CVE-2015-7854].

A remote user can send a specially crafted control packet message to exploit a flaw in decodenetnum() to cause denial of service conditions [CVE-2015-7855].

A remote user can exploit a flaw in the crypto-NAK() function to bypass symmetric association authentication [CVE-2015-7871].

Cisco ASIG, IDA, Cisco TALOS, Tenable, RedHat, OpenVMS, and Boston University reported these vulnerabilities.

Impact:   A remote user can modify time on the target system.

A remote user can view files on the target system.

A remote user can cause denial of service conditions.

A remote user can bypass authentication on the target system.

Solution:   The vendor has issued a fix (4.2.8p4).

The vendor's advisory is available at:

http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner

Vendor URL:  support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner (Links to External Site)
Cause:   Access control error, Boundary error, Input validation error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Oct 23 2015 (Cisco Issues Advisory for Cisco TelePresence) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco TelePresence.
Oct 26 2015 (FreeBSD Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
FreeBSD has issued a fix for FreeBSD 9.3, 10.1, and 10.2.
Oct 26 2015 (CentOS Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
CentOS has issued a fix for CentOS Linux 6 and 7.
Oct 26 2015 (Red Hat Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Red Hat has issued a fix for Red Hat Enterprise Linux 6 and 7.
Oct 26 2015 (Oracle Issues Fix for Oracle Linux) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Oracle has issued a fix for Oracle Linux 6 and 7.
Oct 27 2015 (Ubuntu Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Ubuntu has issued a fix for Ubuntu Linux 12.04 LTS, 14.04 LTS, 14.10, and 15.04.
Oct 29 2015 (Cisco Issues Advisory for Cisco Video Surveillance Media Server) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Video Surveillance Media Server.
Oct 29 2015 (Cisco Issues Advisory for Cisco Media Experience Engine) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Media Experience Engine.
Oct 29 2015 (Cisco Issues Advisory for Cisco Enterprise Content Delivery System) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Enterprise Content Delivery System.
Oct 29 2015 (Cisco Issues Advisory for Cisco Digital Media Products) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Digital Media Products.
Oct 29 2015 (Cisco Issues Advisory for Cisco Unity Express) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Unity Express.
Oct 29 2015 (Cisco Issues Advisory for Cisco Unified Computing System Central) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Unified Computing System Central.
Oct 29 2015 (Cisco Issues Advisory for Cisco Prime Service Catalog Virtual Appliance) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Prime Service Catalog Virtual Appliance.
Oct 29 2015 (Cisco Issues Advisory for Cisco Secure Access Control Server) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Secure Access Control Server.
Oct 29 2015 (Cisco Issues Advisory for Cisco Physical Access Control Gateway) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Physical Access Control Gateway.
Oct 29 2015 (Cisco Issues Advisory for Cisco Intrusion Prevention System) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Intrusion Prevention System.
Oct 29 2015 (Juniper Issues Advisory for Juniper Junos) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Juniper has issued an advisory for Juniper Junos.
Nov 24 2015 (Oracle Issues Fix for Oracle Linux) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Oracle has issued a fix for Oracle Linux 7.
Nov 26 2015 (Red Hat Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Red Hat has issued a fix for Red Hat Enterprise Linux 6.5 and 6.6.
Dec 8 2015 (Blue Coat Systems Issues Advisory for Blue Coat Director) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Blue Coat Systems has issued an advisory for Blue Coat Director.
Jan 23 2016 (IBM Issues Fix for IBM AIX) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
IBM has issued a fix for IBM AIX 5.3, 6.1, 7.1, and 7.2.
Mar 22 2016 (IBM Issues Fix for IBM Security Network Protection) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
IBM has issued a fix for IBM Security Network Protection 5.3.1 and 5.3.2.
Apr 18 2016 (NetBSD Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
NetBSD has issued a fix for NetBSD 6.0, 6.1, and 7.0.
May 6 2016 (Brocade Communications Systems Issues Fix for Brocade 5400 and 5600 vRouters) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Brocade Communications Systems has issued a fix for Brocade 5400 and 5600 vRouters.
May 6 2016 (Cisco Issues Advisory for Cisco Unified MeetingPlace) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Unified MeetingPlace.
May 6 2016 (Cisco Issues Advisory for Cisco Jabber Guest) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Cisco has issued an advisory for Cisco Jabber Guest.
May 10 2016 (Red Hat Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Red Hat has issued a fix for Red Hat Enterprise Linux 6.
Sep 13 2016 (IBM Issues Fix for IBM Security Access Manager) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
IBM has issued a fix for IBM Security Access Manager.
Nov 3 2016 (Red Hat Issues Fix) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Red Hat has issued a fix for Red Hat Enterprise Linux 7.
Jan 27 2017 (Citrix Issues Fix for Citrix XenServer) ntp Multiple Flaws Let Remote Users Deny Service, View Files, and Bypass Authentication to Modify the Time
Citrix has issued a fix for Citrix XenServer.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC