Authentication flaw

2015-10-0601:59:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.014 Low

EPSS

Percentile

86.2%

JSON

The read_network_packet function in ntp_io.c in ntpd in NTP 4.x before 4.2.8p1 on Linux and OS X does not properly determine whether a source IP address is an IPv6 loopback address, which makes it easier for remote attackers to spoof restricted packets, and read or write to the runtime state, by leveraging the ability to reach the ntpd machine’s network interface with a packet from the ::1 address.

CPENameOperatorVersion
debian_linuxeq8.0
debian_linuxeq7.0
debian_linuxeq9.0
ntpge4.2.0
ntplt4.2.8
ntpeq4.2.8
linuxeq7
enterprise_linux_desktopeq6.0
enterprise_linux_servereq6.0
enterprise_linux_workstationeq6.0

Name	Operator	Version
debian_linux	eq	8.0
debian_linux	eq	7.0
debian_linux	eq	9.0
ntp	ge	4.2.0
ntp	lt	4.2.8
ntp	eq	4.2.8
linux	eq	7
enterprise_linux_desktop	eq	6.0
enterprise_linux_server	eq	6.0
enterprise_linux_workstation	eq	6.0