CVE-2009-0021

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077.

References

http://lists.apple.com/archives/security-announce/2009/May/msg00002.html

http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html

http://secunia.com/advisories/33406

http://secunia.com/advisories/33558

http://secunia.com/advisories/33648

http://secunia.com/advisories/34642

http://secunia.com/advisories/35074

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.531177

http://support.apple.com/kb/HT3549

http://www.ocert.org/advisories/ocert-2008-016.html

http://www.redhat.com/support/errata/RHSA-2009-0046.html

http://www.securityfocus.com/archive/1/499827/100/0/threaded

http://www.securitytracker.com/id?1021533

http://www.us-cert.gov/cas/techalerts/TA09-133A.html

http://www.vupen.com/english/advisories/2009/0042

http://www.vupen.com/english/advisories/2009/1297

https://lists.ntp.org/pipermail/announce/2009-January/000055.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10035

Details

Source: MITRE

Published: 2009-01-07

Updated: 2018-10-11

Type: CWE-287

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Tenable Plugins

View all (35 total)

IDNameProductFamilySeverity
108014Solaris 10 (x86) : 139501-02NessusSolaris Local Security Checks
medium
80395OracleVM 2.2 : ntp (OVMSA-2015-0002)NessusOracleVM Local Security Checks
high
80394OracleVM 3.2 : ntp (OVMSA-2015-0001)NessusOracleVM Local Security Checks
high
79458OracleVM 2.1 : ntp (OVMSA-2009-0011)NessusOracleVM Local Security Checks
medium
67793Oracle Linux 4 / 5 : ntp (ELSA-2009-0046)NessusOracle Linux Local Security Checks
medium
67792Oracle Linux 3 / 4 / 5 : bind (ELSA-2009-0020)NessusOracle Linux Local Security Checks
medium
67783Oracle Linux 3 / 4 / 5 : openssl (ELSA-2009-0004)NessusOracle Linux Local Security Checks
medium
60526Scientific Linux Security Update : ntp on SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
43728CentOS 4 / 5 : ntp (CESA-2009:0046)NessusCentOS Local Security Checks
medium
41600SuSE 10 Security Update : xntp (ZYPP Patch Number 6072)NessusSuSE Local Security Checks
medium
41269SuSE9 Security Update : xntp, xntp-doc (YOU Patch Number 12338)NessusSuSE Local Security Checks
medium
40389VMSA-2009-0004 : ESX Service Console updates for openssl, bind, and vimNessusVMware ESX Local Security Checks
high
40284openSUSE Security Update : ntp (ntp-439)NessusSuSE Local Security Checks
medium
40082openSUSE Security Update : ntp (ntp-439)NessusSuSE Local Security Checks
medium
38744Mac OS X 10.5.x < 10.5.7 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
38743Mac OS X Multiple Vulnerabilities (Security Update 2009-002)NessusMacOS X Local Security Checks
critical
38118Solaris 10 (sparc) : 139500-04NessusSolaris Local Security Checks
medium
37876Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : ntp vulnerability (USN-705-1)NessusUbuntu Local Security Checks
medium
36723Mandriva Linux Security Advisory : ntp (MDVSA-2009:007)NessusMandriva Local Security Checks
medium
36555Solaris 10 (x86) : 139501-02NessusSolaris Local Security Checks
medium
36222Fedora 10 : ntp-4.2.4p6-1.fc10 (2009-0544)NessusFedora Local Security Checks
medium
36220Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : bind9 vulnerability (USN-706-1)NessusUbuntu Local Security Checks
medium
36093GLSA-200904-05 : ntp: Certificate validation errorNessusGentoo Local Security Checks
medium
35723openSUSE 10 Security Update : xntp (xntp-5936)NessusSuSE Local Security Checks
medium
35589CentOS 3 / 4 / 5 : bind (CESA-2009:0020)NessusCentOS Local Security Checks
medium
35551RHEL 4 / 5 : ntp (RHSA-2009:0046)NessusRed Hat Local Security Checks
medium
35455Fedora 9 : ntp-4.2.4p6-1.fc9 (2009-0547)NessusFedora Local Security Checks
medium
35377Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 8.1 / 9.0 / 9.1 / current : ntp (SSA:2009-014-03)NessusSlackware Local Security Checks
medium
35365Debian DSA-1702-1 : ntp - interpretation conflictNessusDebian Local Security Checks
medium
35364Debian DSA-1701-1 : openssl, openssl097 - interpretation conflictNessusDebian Local Security Checks
medium
35324RHEL 2.1 / 3 / 4 / 5 : bind (RHSA-2009:0020)NessusRed Hat Local Security Checks
medium
35316RHEL 2.1 / 3 / 4 / 5 : openssl (RHSA-2009:0004)NessusRed Hat Local Security Checks
medium
35310CentOS 3 / 4 / 5 : openssl (CESA-2009:0004)NessusCentOS Local Security Checks
medium
5023Mac OS X 10.5 < 10.5.7 Multiple VulnerabilitiesNessus Network MonitorGeneric
critical
800792Mac OS X 10.5 < 10.5.7 Multiple VulnerabilitiesLog Correlation EngineOperating System Detection
high