NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:S/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Debian
  • Debian Linux
Netapp
  • Clustered Data Ontap
  • Oncommand Balance
Ntp
  • Ntp
Redhat
  • Enterprise Linux
Siemens
  • Tim 4r-ie
  • Tim 4r-ie Dnp3
  • Tim 4r-ie Dnp3 Firmware
  • Tim 4r-ie Firmware

Configuration 1 [-]

OR cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:-:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta4:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-beta5:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-rc1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p1-rc2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2-rc1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2-rc2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p2-rc3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3-rc1:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3-rc2:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p3-rc3:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p4:*:*:*:*:*:*
cpe:2.3:a:ntp:ntp:4.2.8:p5:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:siemens:tim_4r-ie_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:tim_4r-ie:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:siemens:tim_4r-ie_dnp3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:tim_4r-ie_dnp3:-:*:*:*:*:*:*:*

Configuration 4 [-]

OR cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:*

Configuration 5 [-]

OR cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Package CPE Advisory Released Date
Red Hat Enterprise Linux 7
ntp-0:4.2.6p5-25.el7 cpe:/o:redhat:enterprise_linux:7 RHSA-2016:2583 2016-11-03T00:00:00Z
References
Link Providers
http://bugs.ntp.org/show_bug.cgi?id=2936 cve-icon cve-icon
http://rhn.redhat.com/errata/RHSA-2016-2583.html cve-icon cve-icon
http://support.ntp.org/bin/view/Main/NtpBug2936 cve-icon cve-icon cve-icon
http://www.debian.org/security/2016/dsa-3629 cve-icon cve-icon
http://www.securityfocus.com/bid/81960 cve-icon cve-icon
http://www.securitytracker.com/id/1034782 cve-icon cve-icon
http://www.talosintel.com/reports/TALOS-2016-0071/ cve-icon cve-icon cve-icon
https://cert-portal.siemens.com/productcert/pdf/ssa-497656.pdf cve-icon cve-icon
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03750en_us cve-icon cve-icon
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03766en_us cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2015-7974 cve-icon
https://security.FreeBSD.org/advisories/FreeBSD-SA-16:09.ntp.asc cve-icon cve-icon
https://security.gentoo.org/glsa/201607-15 cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20171031-0001/ cve-icon cve-icon
https://us-cert.cisa.gov/ics/advisories/icsa-21-103-11 cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2015-7974 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-01-26T19:00:00

Updated: 2024-08-06T08:06:31.462Z

Reserved: 2015-10-23T00:00:00

Link: CVE-2015-7974

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2016-01-26T19:59:00.107

Modified: 2021-04-26T17:42:02.570

Link: CVE-2015-7974

cve-icon Redhat

Severity : Low

Publid Date: 2016-01-20T00:00:00Z

Links: CVE-2015-7974 - Bugzilla