CVE-2016-9310
medium
CVSS v3
6.5
CVSS v2
6.4
VIR risk
6.5
Description
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.
Predictions
Exploit likelihood
75%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2016-9310
Vendor advisory: cve@mitre.org — http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities
Vendor advisory: cve@mitre.org — http://support.ntp.org/bin/view/Main/NtpBug3118
Vendor advisory: cve@mitre.org — http://nwtime.org/ntp428p9_release/
Vendor advisory: arch — https://security.archlinux.org/ASA-201611-28
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| arch | fixed | 4.2.8.p9-1 | |
| debian | bullseye | fixed | 1:4.2.8p9+dfsg-1 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| ntp | ntp | {"endIncluding":"4.2.8"} | |
References
- https://security.archlinux.org/ASA-201611-28
- http://nwtime.org/ntp428p9_release/
- http://rhn.redhat.com/errata/RHSA-2017-0252.html
- http://support.ntp.org/bin/view/Main/NtpBug3118
- http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities
- http://www.securityfocus.com/bid/94452
- http://www.securitytracker.com/id/1037354
- https://bto.bluecoat.com/security-advisory/sa139
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_us
- https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.asc
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03799en_us
- https://usn.ubuntu.com/3707-2/
- https://www.kb.cert.org/vuls/id/633847
- https://security-tracker.debian.org/tracker/CVE-2016-9310
CWEs
CWE-400
Verify integrity in audit chain (admin only). AS-IS.