CVE-2015-7855
medium
CVSS v3
6.5
CVSS v2
4.0
VIR risk
6.5
Description
The decodenetnum function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.
Predictions
Exploit likelihood
75%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2015-7855
Vendor advisory: cve@mitre.org — http://support.ntp.org/bin/view/Main/NtpBug2922
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bullseye | fixed | 1:4.2.8p4+dfsg-1 |
| debian | 7.0 | affected | |
| debian | 8.0 | affected | |
| debian | 9.0 | affected | |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| ntp | ntp | {"startIncluding":"4.2.0","endExcluding":"4.2.8"} | 4.2.8 |
| ntp | ntp | 4.2.8 | |
| netapp | oncommand_balance | - | |
| netapp | oncommand_performance_manager | - | |
| netapp | oncommand_unified_manager | - | |
References
- http://support.ntp.org/bin/view/Main/NtpBug2922
- http://www.debian.org/security/2015/dsa-3388
- http://www.securityfocus.com/bid/77283
- http://www.securitytracker.com/id/1033951
- https://bugzilla.redhat.com/show_bug.cgi?id=1274264
- https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05270839
- https://security.gentoo.org/glsa/201607-15
- https://security.netapp.com/advisory/ntap-20171004-0001/
- https://us-cert.cisa.gov/ics/advisories/icsa-21-103-11
- https://www.exploit-db.com/exploits/40840/
- https://security-tracker.debian.org/tracker/CVE-2015-7855
CWEs
CWE-20
Verify integrity in audit chain (admin only). AS-IS.