CVE-2013-5211 MEDIUM

Published: 2014-01-02 | Last Modified: 2026-06-16 | Status: Modified

Description

The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.

Additional Descriptions (1)

La característica monlist en ntp_request.c en ntpd en NTP antes 4.2.7p26 permite a atacantes remotos provocar una denegación de servicio (amplificación de tráfico) a través de solicitudes (1) REQ_MON_GETLIST o (2) solicitudes REQ_MON_GETLIST_1, como han sido explotados en diciembre de 2013.

CVSS Metrics

Base Score: 5.0 (MEDIUM)

AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector	NETWORK
Access Complexity	LOW
Authentication	NONE
Confidentiality Impact	NONE
Integrity Impact	NONE
Availability Impact	PARTIAL

Source: [email protected]

Type: Primary

Exploitability Score: 10.0

Impact Score: 2.9

Weaknesses

Source	Type	Description
[email protected]	Primary	en CWE-20

Affected Products

Vendor	Product	Version	Update	Type
opensuse	opensuse	11.4	<built-in method update of dict object at 0x72a9b092a040>	Operating System
ntp	ntp	*	<built-in method update of dict object at 0x72a9a23a1a80>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a0980>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b092a900>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b092a480>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b092bf00>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a36c0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b092bc40>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a3e00>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b092acc0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b0929240>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b092a5c0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a3e80>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9cc479500>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9e4155580>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a1ec0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b0928e00>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a3500>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a12c0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72ab5932f740>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b0b027c0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9cddc26c0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a1680>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9ccf88780>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9a23a2d00>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9cc62c940>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b09294c0>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b092a840>	Application
ntp	ntp	4.2.7	<built-in method update of dict object at 0x72a9b0929e00>	Application
oracle	linux	6	<built-in method update of dict object at 0x72a9ccf89a40>	Operating System
oracle	linux	7	<built-in method update of dict object at 0x72a9ccf894c0>	Operating System

Affected Configurations

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:opensuse:opensuse:11.4:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:a:ntp:ntp::::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:-::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p0::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p1::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p10::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p11::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p12::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p13::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p14::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p15::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p16::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p17::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p18::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p19::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p2::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p20::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p21::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p22::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p23::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p24::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p25::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p3::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p4::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p5::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p6::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p7::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p8::::::`
Yes	`cpe:2.3:a:ntp:ntp:4.2.7:p9::::::`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:oracle:linux:6:-::::::`
Yes	`cpe:2.3:o:oracle:linux:7:-::::::`

References

http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc
Source: [email protected]

Third Party Advisory
http://bugs.ntp.org/show_bug.cgi?id=1532
Source: [email protected]

Issue Tracking
http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04
Source: [email protected]

Third Party Advisory US Government Resource
http://lists.ntp.org/pipermail/pool/2011-December/005616.html
Source: [email protected]

Broken Link
http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html
Source: [email protected]

Third Party Advisory
http://marc.info/?l=bugtraq&m=138971294629419&w=2
Source: [email protected]

Mailing List
http://marc.info/?l=bugtraq&m=144182594518755&w=2
Source: [email protected]

Mailing List Third Party Advisory
http://openwall.com/lists/oss-security/2013/12/30/6
Source: [email protected]

Mailing List
http://openwall.com/lists/oss-security/2013/12/30/7
Source: [email protected]

Mailing List
http://secunia.com/advisories/59288
Source: [email protected]

Not Applicable
http://secunia.com/advisories/59726
Source: [email protected]

Not Applicable
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861
Source: [email protected]

Broken Link
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892
Source: [email protected]

Broken Link
http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz
Source: [email protected]

Patch
http://www.kb.cert.org/vuls/id/348126
Source: [email protected]

Third Party Advisory US Government Resource
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
Source: [email protected]

Third Party Advisory
http://www.securityfocus.com/bid/64692
Source: [email protected]

Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1030433
Source: [email protected]

Third Party Advisory VDB Entry
http://www.us-cert.gov/ncas/alerts/TA14-013A
Source: [email protected]

Third Party Advisory US Government Resource
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232
Source: [email protected]

Third Party Advisory
https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory
Source: [email protected]

Broken Link
http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
http://bugs.ntp.org/show_bug.cgi?id=1532
Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking
http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory US Government Resource
http://lists.ntp.org/pipermail/pool/2011-December/005616.html
Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link
http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
http://marc.info/?l=bugtraq&m=138971294629419&w=2
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List
http://marc.info/?l=bugtraq&m=144182594518755&w=2
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Third Party Advisory
http://openwall.com/lists/oss-security/2013/12/30/6
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List
http://openwall.com/lists/oss-security/2013/12/30/7
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List
http://secunia.com/advisories/59288
Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable
http://secunia.com/advisories/59726
Source: af854a3a-2127-422b-91ae-364da2661108

Not Applicable
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861
Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892
Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link
http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz
Source: af854a3a-2127-422b-91ae-364da2661108

Patch
http://www.kb.cert.org/vuls/id/348126
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory US Government Resource
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
http://www.securityfocus.com/bid/64692
Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1030433
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory VDB Entry
http://www.us-cert.gov/ncas/alerts/TA14-013A
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory US Government Resource
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link