Vulnerability Description
An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ntp | Ntp | 4.2.8 |
| Freebsd | Freebsd | 10.0 |
| Hpe | Hpux-Ntp | < c.4.2.8.4.0 |
| Siemens | Simatic Net Cp 443-1 Opc Ua Firmware | All versions |
| Siemens | Simatic Net Cp 443-1 Opc Ua | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/142101/FreeBSD-Security-Advisory-FreeBSD-SA
- http://packetstormsecurity.com/files/142284/Slackware-Security-Advisory-ntp-Upda
- http://seclists.org/fulldisclosure/2017/Nov/7
- http://seclists.org/fulldisclosure/2017/Sep/62
- http://www.securityfocus.com/archive/1/540403/100/0/threaded
- http://www.securityfocus.com/archive/1/archive/1/540403/100/0/threaded
- http://www.securityfocus.com/archive/1/archive/1/540464/100/0/threaded
- http://www.securityfocus.com/bid/97046Permissions RequiredThird Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038123Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039427Third Party AdvisoryVDB Entry
- http://www.ubuntu.com/usn/USN-3349-1
- https://bto.bluecoat.com/security-advisory/sa147
- https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdfThird Party Advisory
- https://kc.mcafee.com/corporate/index?page=content&id=SB10201
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
FAQ
What is CVE-2016-9042?
CVE-2016-9042 is a vulnerability with a CVSS score of 5.9 (MEDIUM). An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected ...
How severe is CVE-2016-9042?
CVE-2016-9042 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-9042?
Check the references section above for vendor advisories and patch information. Affected products include: Ntp Ntp, Freebsd Freebsd, Hpe Hpux-Ntp, Siemens Simatic Net Cp 443-1 Opc Ua Firmware, Siemens Simatic Net Cp 443-1 Opc Ua.