Network Time Protocol Daemon (ntpd) read_mru_list() Remote DoS
High Nessus Plugin ID 95389
SynopsisThe remote NTP server is affected by a denial of service vulnerability.
DescriptionThe remote NTP server is affected by a denial of service vulnerability due to improper validation of mrulist queries. An unauthenticated, remote attacker can exploit this, via a specially crafted NTP mrulist query packet, to terminate the ntpd process.
Note that the NTP server is reportedly affected by additional vulnerabilities as well; however, Nessus has not tested for these.
SolutionUpgrade to NTP version 4.2.8p9 or later.