CVE-2015-7974

Опубликовано: 26 янв. 2016

Источник: nvd

CVSS3: 7.7

CVSS2: 4

EPSS Низкий

Описание

NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."

Ссылки

http://bugs.ntp.org/show_bug.cgi?id=2936
Issue Tracking
Vendor Advisory
http://rhn.redhat.com/errata/RHSA-2016-2583.html
Third Party Advisory
http://support.ntp.org/bin/view/Main/NtpBug2936
Vendor Advisory
http://www.debian.org/security/2016/dsa-3629
Third Party Advisory
http://www.securityfocus.com/bid/81960
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1034782
Third Party Advisory
VDB Entry
http://www.talosintel.com/reports/TALOS-2016-0071/
Exploit
Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf
Third Party Advisory
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03750en_us
Third Party Advisory
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03766en_us
Third Party Advisory
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:09.ntp.asc
Third Party Advisory
https://security.gentoo.org/glsa/201607-15
Third Party Advisory
https://security.netapp.com/advisory/ntap-20171031-0001/
Third Party Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-21-103-11
Third Party Advisory
US Government Resource
http://bugs.ntp.org/show_bug.cgi?id=2936
Issue Tracking
Vendor Advisory
http://rhn.redhat.com/errata/RHSA-2016-2583.html
Third Party Advisory
http://support.ntp.org/bin/view/Main/NtpBug2936
Vendor Advisory
http://www.debian.org/security/2016/dsa-3629
Third Party Advisory
http://www.securityfocus.com/bid/81960
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1034782
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*

Версия от 4.2.0 (включая) до 4.2.8 (исключая)

cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*

Версия от 4.3.0 (включая) до 4.3.90 (исключая)

cpe:2.3:a:ntp:ntp:4.2.8:-:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1-beta1:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1-beta2:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1-beta3:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1-beta4:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1-beta5:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1-rc1:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p1-rc2:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p2:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p2-rc1:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p2-rc2:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p2-rc3:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p3:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p3-rc1:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p3-rc2:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p3-rc3:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p4:*:*:*:*:*:*

cpe:2.3:a:ntp:ntp:4.2.8:p5:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:siemens:tim_4r-ie_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:tim_4r-ie:-:*:*:*:*:*:*:*

Конфигурация 3

Одновременно

cpe:2.3:o:siemens:tim_4r-ie_dnp3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:tim_4r-ie_dnp3:-:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:*

Конфигурация 5

Одно из

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.05113

Низкий

7.7 High

CVSS3

4 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

CVE-2015-7974

CVSS3: 7.7

ubuntu

больше 9 лет назад

CVE-2015-7974

redhat

больше 9 лет назад

CVE-2015-7974

CVSS3: 7.7

debian

больше 9 лет назад

NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer asso ...

GHSA-26v6-r4x8-vv44

CVSS3: 7.7

github

больше 3 лет назад

openSUSE-SU-2016:1329-1

suse-cvrf

больше 9 лет назад

Security update for ntp

EPSS

Процентиль: 89%

0.05113

Низкий

7.7 High

CVSS3

4 Medium

CVSS2

Дефекты

CWE-287