CVE-2015-1798

Severity

18%

Complexity

32%

Confidentiality

48%

The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-the-middle attackers to spoof packets by omitting the MAC.

The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-the-middle attackers to spoof packets by omitting the MAC.

CVSS 2.0 Base Score 1.8. CVSS Attack Vector: adjacent_network. CVSS Attack Complexity: high. CVSS Vector: (AV:A/AC:H/Au:N/C:N/I:P/A:N).

Overview

First reported 10 years ago

2015-04-08 10:59:00

Last updated 7 years ago

2018-01-05 02:30:00

Affected Software

NTP

References

http://bugs.ntp.org/show_bug.cgi?id=2779

APPLE-SA-2015-06-30-2

FEDORA-2015-5874

FEDORA-2015-5761

openSUSE-SU-2015:0775

SSRT102029

RHSA-2015:1459

http://support.apple.com/kb/HT204942

http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities

Vendor Advisory

20150408 Multiple Vulnerabilities in ntpd (April 2015) Affecting Cisco Products

20150408 Network Time Protocol Daemon MAC Checking Failure Authentication Bypass Vulnerability

DSA-3223

VU#374268

Third Party Advisory, US Government Resource

MDVSA-2015:202

http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

73951

1032032

USN-2567-1

https://kc.mcafee.com/corporate/index?page=content&id=SB10114

GLSA-201509-01

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.