#VU36001 Security Features in ntp - CVE-2019-11331

Cybersecurity Help s.r.o.

Published: 2019-04-19 | Updated: 2020-08-08

Vulnerability identifier: #VU36001

Vulnerability risk: High

CVSSv4.0: 7.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2019-11331

CWE-ID: CWE-254

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ntp
Server applications / Other server solutions

Vendor: ntp.org

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Network Time Protocol (NTP), as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks.

Mitigation
Install update from vendor's website.

Vulnerable software versions

ntp: All versions

External links
https://www.securityfocus.com/bid/108010
https://support.f5.com/csp/article/K09940637
https://support.f5.com/csp/article/K09940637?utm_source=f5support&utm_medium=RSS
https://tools.ietf.org/html/draft-gont-ntp-port-randomization-00

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Security features in Dell EMC Isilon OneFS

Security Features in ntp