CVE-2009-3563

Severity

64%

Complexity

99%

Confidentiality

81%

ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.

ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.

CVSS 2.0 Base Score 6.4. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:P).

Overview

First reported 15 years ago

2009-12-09 18:30:00

Last updated 7 years ago

2017-09-19 01:29:00

Affected Software

NTP 4.0.72

4.0.72

NTP 4.0.73

4.0.73

NTP 4.0.90

4.0.90

NTP 4.0.91

4.0.91

NTP 4.0.92

4.0.92

NTP 4.0.93

4.0.93

NTP 4.0.94

4.0.94

NTP 4.0.95

4.0.95

NTP 4.0.96

4.0.96

NTP 4.0.97

4.0.97

NTP 4.0.98

4.0.98

NTP 4.0.99

4.0.99

NTP 4.1.0

4.1.0

NTP 4.1.2

4.1.2

NTP 4.2.0

4.2.0

NTP 4.2.2

4.2.2

NTP

References

NetBSD-SA2010-005

http://aix.software.ibm.com/aix/efixes/security/xntpd_advisory.asc

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560074

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691

[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates

HPSBUX02639

SSRT101144

37629

37922

38764

38794

38832

38834

39593

1023298

http://security-tracker.debian.org/tracker/CVE-2009-3563

1021781

http://support.avaya.com/css/P8/documents/100071808

http://support.ntp.org/bin/view/Main/SecurityNotice#DoS_attack_from_certain_NTP_mode

Patch

DSA-1948

Patch

VU#568372

Patch, US Government Resource

http://www.kb.cert.org/vuls/id/MAPG-7X7V6J

http://www.kb.cert.org/vuls/id/MAPG-7X7VD7

37255

Patch

ADV-2010-0510

ADV-2010-0528

ADV-2010-0993

IZ68659

IZ71047

https://bugzilla.redhat.com/show_bug.cgi?id=531213

[announce] 20091208 NTP 4.2.4p8 Released

oval:org.mitre.oval:def:11225

oval:org.mitre.oval:def:12141

oval:org.mitre.oval:def:19376

oval:org.mitre.oval:def:7076

RHSA-2009:1648

RHSA-2009:1651

RHSA-2010:0095

https://support.ntp.org/bugs/show_bug.cgi?id=1331

FEDORA-2009-13090

FEDORA-2009-13121

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.