NTP BUG 2935: Deja Vu: Replay attack on authenticated broadcast mode

Last update: June 28, 2022 20:06 UTC (57417e17c)


Summary

Resolved 4.2.8p6 19 Jan 2016
References Bug 2935 CVE-2015-7973
Affects All ntp-4 releases up to, but not including 4.2.8p6,
and 4.3.0 up to, but not including 4.3.90.
Resolved in 4.2.8p6.
CVSS2 Score MED 4.3 AV:A/AC:M/Au:N/C:N/I:P/A:P

Description

If an NTP network is configured for broadcast operations, then either a man-in-the-middle attacker or a malicious participant that has the same trusted keys as the victim can replay time packets.


Mitigation


Credit

This weakness was discovered by Aanchal Malhotra of Boston University.


Timeline