CVE-2014-9294

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

References

http://advisories.mageia.org/MGASA-2014-0541.html

http://bk1.ntp.org/ntp-dev/util/ntp-keygen.c?PAGE=diffs&REV=4eae1b72298KRoBQmX-y8URCiRPH5g

http://bugs.ntp.org/show_bug.cgi?id=2666

http://marc.info/?l=bugtraq&m=142469153211996&w=2

http://marc.info/?l=bugtraq&m=142590659431171&w=2

http://marc.info/?l=bugtraq&m=142853370924302&w=2

http://marc.info/?l=bugtraq&m=144182594518755&w=2

http://rhn.redhat.com/errata/RHSA-2014-2025.html

http://rhn.redhat.com/errata/RHSA-2015-0104.html

http://secunia.com/advisories/62209

http://support.ntp.org/bin/view/Main/SecurityNotice

http://www.kb.cert.org/vuls/id/852879

http://www.mandriva.com/security/advisories?name=MDVSA-2015:003

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

http://www.securityfocus.com/bid/71762

https://bugzilla.redhat.com/show_bug.cgi?id=1176035

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783

https://kc.mcafee.com/corporate/index?page=content&id=SB10103

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd

Details

Source: MITRE

Published: 2014-12-20

Updated: 2017-01-03

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:* versions up to 4.2.7 (inclusive)

Tenable Plugins

View all (44 total)

IDNameProductFamilySeverity
125009EulerOS Virtualization 3.0.1.0 : ntp (EulerOS-SA-2019-1556)NessusHuawei Local Security Checks
critical
105085Check Point Gaia Operating System < R77.20 Multiple NTP Client Vulnerabilities (sk103825)NessusFirewalls
high
92384F5 Networks BIG-IP : NTP vulnerability (SOL15935)NessusF5 Networks Local Security Checks
high
83877Cisco Prime LAN Management Solution ntpd Multiple VulnerabilitiesNessusCISCO
high
83876Cisco Prime Data Center Network Manager ntpd Multiple Vulnerabilities (uncredentialed check)NessusCISCO
high
83685SUSE SLES10 Security Update : xntp (SUSE-SU-2015:0322-1)NessusSuSE Local Security Checks
high
82683HP-UX PHNE_44236 : s700_800 11.23 NTP timeservices upgrade plus utilitiesNessusHP-UX Local Security Checks
high
82682HP-UX PHNE_44235 : s700_800 11.11 NTP timeservices upgrade plus utilitiesNessusHP-UX Local Security Checks
high
82393Mandriva Linux Security Advisory : ntp (MDVSA-2015:140)NessusMandriva Local Security Checks
high
82099Debian DLA-116-1 : ntp security updateNessusDebian Local Security Checks
high
81981Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p1 Multiple VulnerabilitiesNessusMisc.
critical
81980Cisco Prime Security Manager Network Time Protocol Daemon (ntpd) Multiple Vulnerabilities (cisco-sa-20141222-ntpd)NessusCGI abuses
high
81913Cisco IOS XR NCS 6000 Multiple ntpd VulnerabilitiesNessusCISCO
high
81912Cisco IOS XR Multiple ntpd VulnerabilitiesNessusCISCO
high
81911Cisco NX-OS Multiple ntpd VulnerabilitiesNessusCISCO
high
81313SuSE 11.3 Security Update : ntp (SAT Patch Number 10293)NessusSuSE Local Security Checks
high
81275AIX 7.1 TL 3 : ntp (IV68430)NessusAIX Local Security Checks
critical
81274AIX 7.1 TL 2 : ntp (IV68429)NessusAIX Local Security Checks
high
81273AIX 6.1 TL 9 : ntp (IV68428)NessusAIX Local Security Checks
high
81272AIX 5.3 TL 12 : ntp (IV68427)NessusAIX Local Security Checks
high
81271AIX 6.1 TL 8 : ntp (IV68426)NessusAIX Local Security Checks
high
81071RHEL 6 : ntp (RHSA-2015:0104)NessusRed Hat Local Security Checks
high
80934Oracle Solaris Third-Party Patch Update : ntp (multiple_vulnerabilities_in_ntp)NessusSolaris Local Security Checks
high
80395OracleVM 2.2 : ntp (OVMSA-2015-0002)NessusOracleVM Local Security Checks
high
80394OracleVM 3.2 : ntp (OVMSA-2015-0001)NessusOracleVM Local Security Checks
high
80384Mandriva Linux Security Advisory : ntp (MDVSA-2015:003)NessusMandriva Local Security Checks
high
80310Fedora 19 : ntp-4.2.6p5-13.fc19 (2014-17395)NessusFedora Local Security Checks
high
80248OracleVM 3.3 : ntp (OVMSA-2014-0085)NessusOracleVM Local Security Checks
high
80239GLSA-201412-34 : NTP: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
80237Fedora 21 : ntp-4.2.6p5-25.fc21 (2014-17367)NessusFedora Local Security Checks
high
80218Ubuntu 10.04 LTS / 12.04 LTS / 14.04 LTS / 14.10 : ntp vulnerabilities (USN-2449-1)NessusUbuntu Local Security Checks
high
80208Debian DSA-3108-1 : ntp - security updateNessusDebian Local Security Checks
high
80204Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : ntp (SSA:2014-356-01)NessusSlackware Local Security Checks
high
80164Scientific Linux Security Update : ntp on SL6.x, SL7.x i386/x86_64 (20141220)NessusScientific Linux Local Security Checks
high
80163Scientific Linux Security Update : ntp on SL5.x i386/x86_64 (20141220)NessusScientific Linux Local Security Checks
high
80161RHEL 5 : ntp (RHSA-2014:2025)NessusRed Hat Local Security Checks
high
80160RHEL 6 / 7 : ntp (RHSA-2014:2024)NessusRed Hat Local Security Checks
high
80155Oracle Linux 5 : ntp (ELSA-2014-2025)NessusOracle Linux Local Security Checks
high
80154Oracle Linux 6 / 7 : ntp (ELSA-2014-2024)NessusOracle Linux Local Security Checks
high
80149FreeBSD : ntp -- multiple vulnerabilities (4033d826-87dd-11e4-9079-3c970e169bc2)NessusFreeBSD Local Security Checks
high
80147Fedora 20 : ntp-4.2.6p5-19.fc20 (2014-17361)NessusFedora Local Security Checks
high
80125CentOS 5 : ntp (CESA-2014:2025)NessusCentOS Local Security Checks
high
80124CentOS 6 / 7 : ntp (CESA-2014:2024)NessusCentOS Local Security Checks
high
80122Amazon Linux AMI : ntp (ALAS-2014-462)NessusAmazon Linux Local Security Checks
high