#VU10799 Denial of service in Network Time Protocol - CVE-2018-7184

Cybersecurity Help s.r.o.

Published: 2018-03-01

Vulnerability identifier: #VU10799

Vulnerability risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-7184

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Network Time Protocol
Server applications / Other server solutions

Vendor: ntp.org

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to insufficient security restrictions. A remote attacker can cause interleaved symmetric mode to crash.

Mitigation
Update to version 4.2.8p11 or later.

Vulnerable software versions

Network Time Protocol: 4.2.8p6 - 4.2.8p10

External links
https://support.ntp.org/bin/view/Main/SecurityNotice#February_2018_ntp_4_2_8p11_NTP_S
https://support.ntp.org/bin/view/Main/NtpBug3453

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM AIX

Gentoo update for NTP

Amazon Linux AMI update for ntp

Multiple vulnerabilities in QLogic 8Gb Intelligent Pass-thru Module and SAN Switch Module for IBM BladeCenter and IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru

Multiple vulnerabilities in IBM Flex System Chassis Management Module (CMM)

Multiple vulnerabilities in IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems

Arch Linux update for ntp

FreeBSD update for ntpd

Slackware Linux update for ntp

Multiple vulnerabilities in Network Time Protocol