Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2020-1611.NASLHistoryJun 02, 2020 - 12:00 a.m.
EulerOS 2.0 SP5 : ntp (EulerOS-SA-2020-1611)
2020-06-0200:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
30
6.2 Medium
AI Score
Confidence
Low
According to the versions of the ntp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :
-
ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via the poll interval in a broadcast packet.(CVE-2016-7428)
-
The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packet.(CVE-2016-7427)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(137029);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/08");
script_cve_id("CVE-2016-7427", "CVE-2016-7428");
script_name(english:"EulerOS 2.0 SP5 : ntp (EulerOS-SA-2020-1611)");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing multiple security updates.");
script_set_attribute(attribute:"description", value:
"According to the versions of the ntp packages installed, the EulerOS
installation on the remote host is affected by the following
vulnerabilities :
- ntpd in NTP before 4.2.8p9 allows remote attackers to
cause a denial of service (reject broadcast mode
packets) via the poll interval in a broadcast
packet.(CVE-2016-7428)
- The broadcast mode replay prevention functionality in
ntpd in NTP before 4.2.8p9 allows remote attackers to
cause a denial of service (reject broadcast mode
packets) via a crafted broadcast mode
packet.(CVE-2016-7427)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1611
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3fdb0465");
script_set_attribute(attribute:"solution", value:
"Update the affected ntp packages.");
script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-7428");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"patch_publication_date", value:"2020/06/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/06/02");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:ntp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:ntpdate");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:sntp");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
script_exclude_keys("Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");
sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(5)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP5");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP5", "EulerOS UVP " + uvp);
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["ntp-4.2.6p5-28.h15.eulerosv2r7",
"ntpdate-4.2.6p5-28.h15.eulerosv2r7",
"sntp-4.2.6p5-28.h15.eulerosv2r7"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", sp:"5", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_NOTE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ntp");
}
Related
openvas
openvas
Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2020-1611)
2020-06-03 00:00:00
NTP.org 'ntpd' 4.2.8p6 - 4.2.8p8, 4.3.90 - 4.3.93 Multiple Vulnerabilities (Nov 2016)
2016-06-03 00:00:00
Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2020-2225)
2020-10-21 00:00:00
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.2.0 : ntp (EulerOS-SA-2020-1547)
2020-05-01 00:00:00
EulerOS Virtualization 3.0.6.0 : ntp (EulerOS-SA-2020-1723)
2020-07-01 00:00:00
EulerOS Virtualization 3.0.2.2 : ntp (EulerOS-SA-2020-2225)
2020-10-21 00:00:00
aix
aix
There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX.
2017-02-13 15:32:47
ibm
ibm
prion
prion
Code injection
2017-01-13 16:59:00
Code injection
2017-01-13 16:59:00
cve
cve
CVE-2016-7428
2017-01-13 16:59:00
CVE-2016-7427
2017-01-13 16:59:00
debiancve
debiancve
CVE-2016-7427
2017-01-13 16:59:00
CVE-2016-7428
2017-01-13 16:59:00
redhatcve
redhatcve
CVE-2016-7428
2016-11-22 10:48:02
CVE-2016-7427
2016-11-22 10:47:34
f5
f5
K80996302 : Multiple NTP vulnerabilities
2016-12-16 00:00:00
ubuntucve
ubuntucve
CVE-2016-7428
2017-01-13 00:00:00
CVE-2016-7427
2017-01-13 00:00:00
talos
talos
seebug
seebug
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:39.ntp
2016-12-22 00:00:00
freebsd
freebsd
FreeBSD -- Multiple vulnerabilities of ntp
2016-12-22 00:00:00
ntp -- multiple vulnerabilities
2016-11-21 00:00:00
ubuntu
ubuntu
NTP vulnerabilities
2019-01-23 00:00:00
NTP vulnerabilities
2017-07-05 00:00:00
archlinux
archlinux
[ASA-201611-28] ntp: multiple issues
2016-11-26 00:00:00
huawei
huawei
Security Advisory - Multiple NTPd Vulnerabilities in Huawei Products
2017-11-29 00:00:00
cert
cert
NTP.org ntpd contains multiple denial of service vulnerabilities
2016-11-21 00:00:00
slackware
slackware
[slackware-security] ntp
2016-11-21 19:25:10
symantec
symantec
SA139 : November 2016 NTP Security Vulnerabilities
2017-01-12 08:00:00
cisco
cisco
cloudfoundry
cloudfoundry
USN-3349-1: NTP vulnerabilities | Cloud Foundry
2017-08-04 00:00:00