Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-7974

NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."

Published

2016-01-26T19:59:00.107

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 7.7 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ntp	ntp	< 4.2.8	Yes
Application	ntp	ntp	< 4.3.90	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Application	ntp	ntp	4.2.8	Yes
Operating System	siemens	tim_4r-ie_firmware	*	Yes
Hardware	siemens	tim_4r-ie	-	No
Operating System	siemens	tim_4r-ie_dnp3_firmware	*	Yes
Hardware	siemens	tim_4r-ie_dnp3	-	No
Application	netapp	clustered_data_ontap	-	Yes
Application	netapp	oncommand_balance	-	Yes
Operating System	debian	debian_linux	8.0	Yes
Operating System	debian	debian_linux	9.0	Yes

References

http://bugs.ntp.org/show_bug.cgi?id=2936 Issue Tracking, Vendor Advisory ([email protected])
http://rhn.redhat.com/errata/RHSA-2016-2583.html Third Party Advisory ([email protected])
http://support.ntp.org/bin/view/Main/NtpBug2936 Vendor Advisory ([email protected])
http://www.debian.org/security/2016/dsa-3629 Third Party Advisory ([email protected])
http://www.securityfocus.com/bid/81960 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1034782 Third Party Advisory, VDB Entry ([email protected])
http://www.talosintel.com/reports/TALOS-2016-0071/ Exploit, Third Party Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf Third Party Advisory ([email protected])
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03750en_us Third Party Advisory ([email protected])
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03766en_us Third Party Advisory ([email protected])
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:09.ntp.asc Third Party Advisory ([email protected])
https://security.gentoo.org/glsa/201607-15 Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20171031-0001/ Third Party Advisory ([email protected])
https://us-cert.cisa.gov/ics/advisories/icsa-21-103-11 Third Party Advisory, US Government Resource ([email protected])
http://bugs.ntp.org/show_bug.cgi?id=2936 Issue Tracking, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2016-2583.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://support.ntp.org/bin/view/Main/NtpBug2936 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2016/dsa-3629 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/81960 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1034782 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.talosintel.com/reports/TALOS-2016-0071/ Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03750en_us Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03766en_us Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:09.ntp.asc Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201607-15 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20171031-0001/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://us-cert.cisa.gov/ics/advisories/icsa-21-103-11 Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)