ID CVE-2014-9296
Summary The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
References
Vulnerable Configurations
  • NTP 4.2.7
    cpe:2.3:a:ntp:ntp:4.2.7
CVSS
Base: 5.0 (as of 01-11-2016 - 13:05)
Impact:
Exploitability:
CWE CWE-17
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
redhat via4
advisories
  • bugzilla
    id 1176040
    title CVE-2014-9296 ntp: receive() missing return on error
    oval
    OR
    • AND
      • OR
        • comment Red Hat Enterprise Linux 7 Client is installed
          oval oval:com.redhat.rhsa:tst:20140675001
        • comment Red Hat Enterprise Linux 7 Server is installed
          oval oval:com.redhat.rhsa:tst:20140675002
        • comment Red Hat Enterprise Linux 7 Workstation is installed
          oval oval:com.redhat.rhsa:tst:20140675003
        • comment Red Hat Enterprise Linux 7 ComputeNode is installed
          oval oval:com.redhat.rhsa:tst:20140675004
      • OR
        • AND
          • comment ntp is earlier than 0:4.2.6p5-19.el7_0
            oval oval:com.redhat.rhsa:tst:20142024005
          • comment ntp is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024006
        • AND
          • comment ntp-doc is earlier than 0:4.2.6p5-19.el7_0
            oval oval:com.redhat.rhsa:tst:20142024009
          • comment ntp-doc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024010
        • AND
          • comment ntp-perl is earlier than 0:4.2.6p5-19.el7_0
            oval oval:com.redhat.rhsa:tst:20142024013
          • comment ntp-perl is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024014
        • AND
          • comment ntpdate is earlier than 0:4.2.6p5-19.el7_0
            oval oval:com.redhat.rhsa:tst:20142024011
          • comment ntpdate is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024012
        • AND
          • comment sntp is earlier than 0:4.2.6p5-19.el7_0
            oval oval:com.redhat.rhsa:tst:20142024007
          • comment sntp is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024008
    • AND
      • OR
        • comment Red Hat Enterprise Linux 6 Client is installed
          oval oval:com.redhat.rhsa:tst:20100842001
        • comment Red Hat Enterprise Linux 6 Server is installed
          oval oval:com.redhat.rhsa:tst:20100842002
        • comment Red Hat Enterprise Linux 6 Workstation is installed
          oval oval:com.redhat.rhsa:tst:20100842003
        • comment Red Hat Enterprise Linux 6 ComputeNode is installed
          oval oval:com.redhat.rhsa:tst:20100842004
      • OR
        • AND
          • comment ntp is earlier than 0:4.2.6p5-2.el6_6
            oval oval:com.redhat.rhsa:tst:20142024019
          • comment ntp is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024006
        • AND
          • comment ntp-doc is earlier than 0:4.2.6p5-2.el6_6
            oval oval:com.redhat.rhsa:tst:20142024022
          • comment ntp-doc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024010
        • AND
          • comment ntp-perl is earlier than 0:4.2.6p5-2.el6_6
            oval oval:com.redhat.rhsa:tst:20142024020
          • comment ntp-perl is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024014
        • AND
          • comment ntpdate is earlier than 0:4.2.6p5-2.el6_6
            oval oval:com.redhat.rhsa:tst:20142024021
          • comment ntpdate is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20142024012
    rhsa
    id RHSA-2014:2024
    released 2014-12-20
    severity Important
    title RHSA-2014:2024: ntp security update (Important)
  • rhsa
    id RHSA-2015:0104
rpms
  • ntp-0:4.2.6p5-19.el7_0
  • ntp-doc-0:4.2.6p5-19.el7_0
  • ntp-perl-0:4.2.6p5-19.el7_0
  • ntpdate-0:4.2.6p5-19.el7_0
  • sntp-0:4.2.6p5-19.el7_0
  • ntp-0:4.2.6p5-2.el6_6
  • ntp-doc-0:4.2.6p5-2.el6_6
  • ntp-perl-0:4.2.6p5-2.el6_6
  • ntpdate-0:4.2.6p5-2.el6_6
refmap via4
bid 71758
cert-vn VU#852879
cisco 20141222 Multiple Vulnerabilities in ntpd Affecting Cisco Products
confirm
hp
  • HPSBGN03277
  • HPSBOV03505
  • HPSBUX03240
  • SSRT101872
mandriva MDVSA-2015:003
secunia 62209
Last major update 02-01-2017 - 21:59
Published 19-12-2014 - 21:59
Back to Top