CVE-2015-5300

Published Jul 21, 2017

Last updated 6 years ago

CVSS high 7.5

Overview

Description: The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option, or to alter the time by up to 900 seconds otherwise by responding to an unspecified number of requests from trusted sources, and leveraging a resulting denial of service (abort and restart).
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-361

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56BDB5A0-0839-4A20-A003-B8CD56F48171"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "253C303A-E577-4488-93E6-68A8DD942C38"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5900A25-FDD7-4900-BF7C-F3ECCB714D2B"
          },
          {
            "criteria": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58D3B6FD-B474-4B09-B644-A8634A629280"
          },
          {
            "criteria": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F892F1B0-514C-42F7-90AE-12ACDFDC1033"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4863BE36-D16A-4D75-90D9-FD76DB5B48B7"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1EB0F28-F23A-4969-8A3E-66DA2EFA40C3"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:12:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A0BA503-3F96-48DA-AF47-FBA37A9D0C48"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35BBD83D-BDC7-4678-BE94-639F59281139"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB6476C7-03F2-4939-AB85-69AA524516D9"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:ltss:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B12243B2-D726-404C-ABFF-F1AB51BA1783"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55C5561F-BE86-4EEA-99D4-8697F8BD9DFE"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2076747F-A98E-4DD9-9B52-BF1732BCAD3D"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB2A1559-651C-46B0-B436-8E03DC8A60D2"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A633996-2FD7-467C-BAA6-529E16BD06D1"
          },
          {
            "criteria": "cpe:2.3:o:suse:manager:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A33B9F5-E0D1-4A3E-9FFB-5602A25F3227"
          },
          {
            "criteria": "cpe:2.3:o:suse:manager_proxy:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53F0F5A0-70D9-4305-A834-B6FF71E27B30"
          },
          {
            "criteria": "cpe:2.3:o:suse:openstack_cloud:5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88BCD7DC-0FEF-477D-8698-F8D8F1A49D90"
          },
          {
            "criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C649194-B8C2-49F7-A819-C635EE584ABF"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2FAC325-6EEB-466D-9EBA-8ED4DBC9CFBF"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C84489B-B08C-4854-8A12-D01B6E45CF79"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7071F0C7-E43E-4F2E-9FEB-E8FB3DEA4749"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7.z:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA856400-1B48-429A-94A0-173B7EEE1EC2"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E8CD4EF-DC90-40BB-A721-6EC087507906"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F38D3B7E-8429-473F-BB31-FC3583EE5A5B"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E88A537F-F4D0-46B9-9E37-965233C2A355"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ntp:ntp:*:p4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05D076CA-85DD-48B4-9A8A-F413FFBFB55F",
            "versionEndIncluding": "4.2.8"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References