F5 Networks BIG-IP : NTP vulnerabilities (K17530)

Medium Nessus Plugin ID 86773

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

CVE-2015-7691

The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.

CVE-2015-7692 The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.

CVE-2015-7702 The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.

Impact

An attacker may be able to craft a packet with particular autokey operations that upon receipt can cause ntpd to stop responding.

Solution

Upgrade to one of the non-vulnerable versions listed in the F5 Solution K17530.

CPE: cpe:/a:f5:big-ip_access_policy_manager, cpe:/a:f5:big-ip_advanced_firewall_manager, cpe:/a:f5:big-ip_application_acceleration_manager, cpe:/a:f5:big-ip_application_security_manager, cpe:/a:f5:big-ip_application_visibility_and_reporting, cpe:/a:f5:big-ip_global_traffic_manager, cpe:/a:f5:big-ip_link_controller, cpe:/a:f5:big-ip_local_traffic_manager, cpe:/a:f5:big-ip_policy_enforcement_manager, cpe:/h:f5:big-ip

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2015/11/02

Reference Information

CVE: CVE-2014-9750, CVE-2015-7691, CVE-2015-7692, CVE-2015-7702

TRA: TRA-2015-04

F5 Networks BIG-IP : NTP vulnerabilities (K17530)

Synopsis

Description

Solution

See Also

Plugin Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerability Information

Reference Information