CVE-2016-1550

Published on: 01/06/2017 12:00:00 AM UTC

Last Modified on: 04/16/2021 07:35:31 PM UTC

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Certain versions of Ntp from Ntp contain the following vulnerability:

An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.

  • CVE-2016-1550 has been assigned by URL Logo [email protected] to track the vulnerability - currently rated as MEDIUM severity.
  • Affected Vendor/Software: URL Logo NTP Project - NTP version 4.2.8p3
  • Affected Vendor/Software: URL Logo NTP Project - NTP version 4.2.8p4
  • Affected Vendor/Software: URL Logo NTPsec Project - NTPSec version a5fb34b9cc89b92a8fef2f459004865c93bb7f92

CVSS3 Score: 5.3 - MEDIUM

Attack
Vector
Attack
Complexity
Privileges
Required
User
Interaction
NETWORK LOW NONE NONE
Scope Confidentiality
Impact
Integrity
Impact
Availability
Impact
UNCHANGED LOW NONE NONE

CVSS2 Score: 5 - MEDIUM

Access
Vector
Access
Complexity
Authentication
NETWORK LOW NONE
Confidentiality
Impact
Integrity
Impact
Availability
Impact
PARTIAL NONE NONE

CVE References

Description Tags Link
Oracle Solaris Bulletin - April 2016 www.oracle.com
text/html
URL Logo CONFIRM www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Red Hat Customer Portal web.archive.org
text/html
Inactive LinkNot Archived
URL Logo REDHAT RHSA-2016:1552
NTP: Multiple vulnerabilities (GLSA 201607-15) — Gentoo Security security.gentoo.org
text/html
URL Logo GENTOO GLSA-201607-15
April 2016 Network Time Protocol Daemon (ntpd) Vulnerabilities in Multiple NetApp Products | NetApp Product Security security.netapp.com
text/html
URL Logo CONFIRM security.netapp.com/advisory/ntap-20171004-0002/
Siemens TIM 4R-IE Devices | CISA us-cert.cisa.gov
text/html
URL Logo MISC us-cert.cisa.gov/ics/advisories/icsa-21-103-11
ntp Multiple Bugs Let Remote Users Spoof Messages, Obtain Potentially Sensitive Information, Modify Time, and Deny Service - SecurityTracker www.securitytracker.com
text/html
URL Logo SECTRACK 1035705
Oracle Linux Bulletin - April 2016 www.oracle.com
text/html
URL Logo CONFIRM www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
Cisco Talos - Talos 2016 0084 Technical Description
Third Party Advisory
www.talosintelligence.com
text/html
URL Logo MISC www.talosintelligence.com/reports/TALOS-2016-0084/
Red Hat Customer Portal access.redhat.com
text/html
URL Logo REDHAT RHSA-2016:1141
NTP CVE-2016-1550 Local Security Bypass Vulnerability cve.report (archive)
text/html
URL Logo BID 88261
security.FreeBSD.org
text/plain
URL Logo FREEBSD FreeBSD-SA-16:16
cert-portal.siemens.com
application/pdf
URL Logo CONFIRM cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf
Debian -- Security Information -- DSA-3629-1 ntp www.debian.org
Depreciated Link
text/html
URL Logo DEBIAN DSA-3629

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationNtpNtp4.2.8p4AllAll
ApplicationNtpNtp4.2.8p4AllAll
  • cpe:2.3:a:ntp:ntp:4.2.8:p4:*:*:*:*:*:*:
  • cpe:2.3:a:ntp:ntp:4.2.8:p4:*:*:*:*:*:*: