Reset Search
 

 

Article

Is EXOS vulnerable to NTP vulnerability CVE-2015-1798 / CVE-2015-1799

« Go Back

Information

 
TitleIs EXOS vulnerable to NTP vulnerability CVE-2015-1798 / CVE-2015-1799
Question
Is EXOS vulnerable to NTP vulnerability CVE-2015-1798 / CVE-2015-1799
Environment
EXOS Version prior to 16.2.1
CVE-2015-1798->Authentication bypass vulnerability due to incorrect validation of mac field.
CVE-2015-1799->Possible Dos attack due to incorrect state-variable updates upon receiving certain invalid packets.
Answer
The official Vulnerability Notice is posted here :  VN 2015 006 Symmetric Key NTP

http://learn.extremenetworks.com/rs/extreme/images/VN-2015-006-NTP.pdf and in article VN 2015 006 Symmetric Key NTP

Vulnerable : Yes
Vulnerable Component  : NTP
Conditions  : CVE-2015-1798->Authentication bypass vulnerability due to incorrect validation of mac field.
                      : CVE-2015-1799->Possible Dos attack due to incorrect state-variable updates upon receiving certain invalid packets.
Product version affected : All exos versions.

Workaround : No workaround is available, but system not running ntpd will be safe from this vulnerability. Risk of exploitation can be minimized by restricting ntp host access to trusted sources only.

Target Fix Release : Exos 16.2.1
Target Month : Jan 2016


This does not affect SNTP
Additional notes
CVE-2015-1798:
The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-the-middle attackers to spoof packets by omitting the MAC.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1798

CVE-2015-1799
The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easier for man-in-the-middle attackers to cause a denial of service (synchronization loss) by spoofing the source IP address of a peer.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1799

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255