| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.8 | $0-$5k | 0.00 |
Summary
A vulnerability identified as problematic has been detected in ntp 4.2.8p5. This affects an unknown function of the component reslist Command. Performing a manipulation results in resource consumption. This vulnerability is cataloged as CVE-2015-7978. It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.
Details
A vulnerability classified as problematic has been found in ntp 4.2.8p5 (Network Management Software). This affects some unknown functionality of the component reslist Command. The manipulation with an unknown input leads to a resource consumption vulnerability. CWE is classifying the issue as CWE-400. The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources. This is going to have an impact on integrity, and availability. The summary by CVE is:
NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction list.
The weakness was shared 01/19/2016 with Cisco as confirmed security notice (Website). The advisory is shared at support.ntp.org. This vulnerability is uniquely identified as CVE-2015-7978 since 10/23/2015. The exploitability is told to be easy. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. Neither technical details nor an exploit are publicly available. MITRE ATT&CK project uses the attack technique T1499 for this issue.
The vulnerability scanner Nessus provides a plugin with the ID 88054 (Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p6 Multiple Vulnerabilities), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Misc. and running in the context r. The commercial vulnerability scanner Qualys is able to test this issue with plugin 157189 (Oracle Enterprise Linux Security Update for ntp (ELSA-2016-0780)).
Upgrading to version 4.2.8p6 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (110023), Tenable (88054), SecurityFocus (BID 81962†) and Vulnerability Center (SBV-56274†). The entries VDB-78936, VDB-78937, VDB-78938 and VDB-80644 are related to this item. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Type
Name
Version
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.1VulDB Meta Temp Score: 5.8
VulDB Base Score: 4.8
VulDB Temp Score: 4.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.5
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Resource consumptionCWE: CWE-400 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Unproven
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 88054
Nessus Name: Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p6 Multiple Vulnerabilities
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
OpenVAS ID: 900567
OpenVAS Name: Fedora Update for ntp FEDORA-2016-8
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: ntp 4.2.8p6
Timeline
10/23/2015 🔍01/19/2016 🔍
01/19/2016 🔍
01/20/2016 🔍
01/21/2016 🔍
01/25/2016 🔍
01/26/2016 🔍
01/29/2016 🔍
01/30/2017 🔍
05/17/2026 🔍
Sources
Advisory: USN-3096-1Organization: Cisco
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2015-7978 (🔍)
GCVE (CVE): GCVE-0-2015-7978
GCVE (VulDB): GCVE-100-80649
OVAL: 🔍
X-Force: 110023 - NTP reslist command denial of service
SecurityFocus: 81962 - NTP CVE-2015-7978 Denial of Service Vulnerability
SecurityTracker: 1034782
Vulnerability Center: 56274 - [cisco-sa-20160127-ntpd] Cisco Multiple Products Remote DoS and Security Bypass due to an Issue in NTP Server - CVE-2015-7978, High
See also: 🔍
Entry
Created: 01/25/2016 13:50Updated: 05/17/2026 01:03
Changes: 01/25/2016 13:50 (71), 07/22/2018 10:23 (19), 07/06/2022 08:48 (5), 05/17/2026 01:03 (15)
Complete: 🔍
Cache ID: 216::103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.