CVE-2016-9042

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 04-06-2018 10:29

Last modified: - 19-04-2022 10:15

Total changes: - 4

Description

An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

High

Attack complexity

Network

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

5.9

Base score

2.2

3.6

Exploitability score

Impact score

Verification logic

vendor=ntp AND product=ntp AND version=4.2.8 AND update=p9

vendor=freebsd AND product=freebsd AND version=10.0

vendor=freebsd AND product=freebsd AND version=11.0

vendor=hpe AND product=hpux-ntp AND versionEndExcluding=c.4.2.8.4.0

AND

vendor=siemens AND product=simatic_net_cp_443-1_opc_ua_firmware

vendor=siemens AND product=simatic_net_cp_443-1_opc_ua AND version=-

Reference

https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0260
FreeBSD-SA-17:03-Third Party Advisory
1039427-Third Party Advisory, VDB Entry
1038123-Third Party Advisory, VDB Entry
97046-Permissions Required, Third Party Advisory, VDB Entry
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03962en_us
https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdf
https://kc.mcafee.com/corporate/index?page=content&id=SB10201
20171101 APPLE-SA-2017-10-31-8 Additional information for APPLE-SA-2017-09-25-1 macOS High Sierra 10.13-
20170925 APPLE-SA-2017-09-25-1 macOS High Sierra 10.13-
https://support.f5.com/csp/article/K39041624
20170412 FreeBSD Security Advisory FreeBSD-SA-17:03.ntp-
https://bto.bluecoat.com/security-advisory/sa147
20170422 [slackware-security] ntp (SSA:2017-112-02)-
FEDORA-2017-20d54b2782-
http://packetstormsecurity.com/files/142101/FreeBSD-Security-Advisory-FreeBSD-SA-17-03.ntp.html
20170412 FreeBSD Security Advisory FreeBSD-SA-17:03.ntp-
http://packetstormsecurity.com/files/142284/Slackware-Security-Advisory-ntp-Updates.html
https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11
USN-3349-1-
https://support.apple.com/kb/HT208144

Keywords

CVE-2016-9042

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2016-9042

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures