CVE-2018-7170

MEDIUM

ntp 4.2.x < 4.2.8p7 and 4.3.x < 4.3.92 - Authenticated Sybil Attack via Ephemeral Association Flood

Title source: llm
STIX 2.1

Description

ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an incomplete fix for CVE-2016-1549.

References (10)

Core 10
Core References
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201805-12
Third Party Advisory vendor-advisory x_refsource_freebsd
https://security.FreeBSD.org/advisories/FreeBSD-SA-18:02.ntp.asc
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20180626-0001/
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/541824/100/0/threaded
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1550214
Third Party Advisory x_refsource_confirm
http://support.ntp.org/bin/view/Main/NtpBug3415
Third Party Advisory x_refsource_confirm
https://www.synology.com/support/security/Synology_SA_18_13
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/103194

Scores

CVSS v3 5.3
EPSS 0.0064
EPSS Percentile 70.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

Status published
Products (10)
hpe/hpux-ntp < c.4.2.8.4.0
netapp/hci
netapp/solidfire
ntp/ntp 4.2.8 (20 CPE variants)
ntp/ntp 4.2.0 - 4.2.8
synology/diskstation_manager 5.2 - 6.1.6-15266
synology/router_manager 1.1 - 1.1.6-6931-3
synology/skynas < 6.1.5-15254
synology/virtual_diskstation_manager < 6.1.6-15266
synology/vs960hd_firmware < 2.2.3-1505
Published Mar 06, 2018
Tracked Since Feb 18, 2026