CVE-2015-8140MEDIUM
Description
The ntpq protocol in NTP before 4.2.8p7 allows remote attackers to conduct replay attacks by sniffing the network.
References
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00059.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00060.html
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00020.html
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00038.html
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.html
http://lists.opensuse.org/opensuse-updates/2016-05/msg00114.html
http://support.ntp.org/bin/view/Main/NtpBug2947
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-ntpd
http://www.securitytracker.com/id/1034782
https://bto.bluecoat.com/security-advisory/sa113
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:09.ntp.asc
Details
Source: MITRE
Published: 2017-01-30
Updated: 2017-11-21
Type: CWE-284
Risk Information
CVSS v2.0
Base Score: 5.8
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:P
Impact Score: 4.9
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3.0
Base Score: 4.8
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
Impact Score: 2.5
Exploitability Score: 2.2
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:ntp:ntp:*:p6:*:*:*:*:*:* versions up to 4.2.8 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 106499 | pfSense < 2.3 Multiple Vulnerabilities (SA-16_01 - SA-16_02) | Nessus | Firewalls | critical |
| 97499 | F5 Networks BIG-IP : NTP vulnerabilities (K00329831) | Nessus | F5 Networks Local Security Checks | medium |
| 96715 | SUSE SLES11 Security Update : ntp (SUSE-SU-2017:0255-1) | Nessus | SuSE Local Security Checks | high |
| 95986 | SUSE SLES11 Security Update : ntp (SUSE-SU-2016:3193-1) | Nessus | SuSE Local Security Checks | high |
| 92485 | GLSA-201607-15 : NTP: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 92357 | AIX NTP v4 Advisory : ntp_advisory6.asc (IV83983) (IV83992) | Nessus | AIX Local Security Checks | medium |
| 92356 | AIX NTP v3 Advisory : ntp_advisory6.asc (IV83984) (IV83993) (IV83994) (IV83995) (IV84269) | Nessus | AIX Local Security Checks | medium |
| 91520 | AIX 5.3 TL 12 : ntp (IV84269) (deprecated) | Nessus | AIX Local Security Checks | high |
| 91519 | AIX 7.2 TL 0 : ntp (IV83995) (deprecated) | Nessus | AIX Local Security Checks | high |
| 91518 | AIX 7.1 TL 4 : ntp (IV83994) (deprecated) | Nessus | AIX Local Security Checks | high |
| 91517 | AIX 7.1 TL 3 : ntp (IV83993) (deprecated) | Nessus | AIX Local Security Checks | high |
| 91516 | AIX 6.1 TL 9 : ntp (IV83984) (deprecated) | Nessus | AIX Local Security Checks | high |
| 91403 | openSUSE Security Update : ntp (openSUSE-2016-649) | Nessus | SuSE Local Security Checks | high |
| 91248 | SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1311-1) | Nessus | SuSE Local Security Checks | high |
| 91111 | openSUSE Security Update : ntp (openSUSE-2016-578) | Nessus | SuSE Local Security Checks | medium |
| 90991 | SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1247-1) | Nessus | SuSE Local Security Checks | high |
| 90821 | SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1177-1) | Nessus | SuSE Local Security Checks | medium |
| 90820 | SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1175-1) | Nessus | SuSE Local Security Checks | medium |
| 88068 | FreeBSD : ntp -- multiple vulnerabilities (5237f5d7-c020-11e5-b397-d050996490d0) | Nessus | FreeBSD Local Security Checks | medium |
| 88054 | Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p6 Multiple Vulnerabilities | Nessus | Misc. | medium |