CVE-2014-9751

Sažetak

The read_network_packet function in ntp_io.c in ntpd in NTP 4.x before 4.2.8p1 on Linux and OS X does not properly determine whether a source IP address is an IPv6 loopback address, which makes it easier for remote attackers to spoof restricted packets, and read or write to the runtime state, by leveraging the ability to reach the ntpd machine's network interface with a packet from the ::1 address.

Reference

http://bugs.ntp.org/show_bug.cgi?id=2672
http://www.kb.cert.org/vuls/id/852879
http://support.ntp.org/bin/view/Main/SecurityNotice#December_2014_NTP_Security_Vulne
https://bugzilla.redhat.com/show_bug.cgi?id=1184572
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/72584
http://www.debian.org/security/2015/dsa-3388
http://rhn.redhat.com/errata/RHSA-2015-1459.html
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03886en_us

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

08-09-2021 - 17:19

Objavljeno

06-10-2015 - 01:59