Network Time Protocol Daemon Integer Overflow Vulnerability
BID:9818
Info
Network Time Protocol Daemon Integer Overflow Vulnerability
| Bugtraq ID: | 9818 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 08 2004 12:00AM |
| Updated: | Mar 08 2004 12:00AM |
| Credit: | Discovery is credited to David L. Mills of NTP.org |
| Vulnerable: |
NTP NTPd 3.0 Compaq Tru64 5.1 b PK4 Compaq Tru64 5.1 b PK3(BL24) Compaq Tru64 5.1 b PK2 (BL24) Compaq Tru64 5.1 b PK2 (BL22) Compaq Tru64 5.1 a PK6(BL24) Compaq Tru64 4.0 g PK4 (BL22) Compaq Tru64 4.0 f PK8 (BL22) |
| Not Vulnerable: |
NTP NTPd 4.3 NTP NTPd 4.2.1 NTP NTPd 4.2 |
Discussion
Network Time Protocol Daemon Integer Overflow Vulnerability
The Network Time Protocol daemon (NTPd) may be prone to an integer overflow vulnerability that may cause integrity loss in a machine.
It has been reported that if a client issues a request to a NTP server containing a date that is more than 34 years of the server's date, the server may calculate an erroneous offset reply. This issue could lead to a loss of integrity in a machine issuing a request to the NTP server as an erroneous time value would not correspond to logs and file creation and modification times, possibly disrupting the audit trail for security-related system and network events.
NTPd versions 3 and prior are reported to be affected by this issue.
The Network Time Protocol daemon (NTPd) may be prone to an integer overflow vulnerability that may cause integrity loss in a machine.
It has been reported that if a client issues a request to a NTP server containing a date that is more than 34 years of the server's date, the server may calculate an erroneous offset reply. This issue could lead to a loss of integrity in a machine issuing a request to the NTP server as an erroneous time value would not correspond to logs and file creation and modification times, possibly disrupting the audit trail for security-related system and network events.
NTPd versions 3 and prior are reported to be affected by this issue.
Exploit / POC
Network Time Protocol Daemon Integer Overflow Vulnerability
This vulnerability does not require active exploitation.
This vulnerability does not require active exploitation.
Solution / Fix
Network Time Protocol Daemon Integer Overflow Vulnerability
Solution:
This issue has been addressed in NTP version 4.
HP has released an advisory (HPSBTU01043) and fixes to address this issue. Please see the referenced advisory for further details regarding obtaining and applying appropriate fixes.
Solution:
This issue has been addressed in NTP version 4.
HP has released an advisory (HPSBTU01043) and fixes to address this issue. Please see the referenced advisory for further details regarding obtaining and applying appropriate fixes.
References
Network Time Protocol Daemon Integer Overflow Vulnerability
References:
References:
- Vulnerability Note VU#584606 (CERT)