Lucene search
FortiGuard LabsFG-IR-20-036HistoryJun 22, 2020 - 12:00 a.m.
FortiAnalyzer could potentially be used in NTP amplification attacks
2020-06-2200:00:00
FortiGuard Labs
www.fortiguard.com
30
0.967 High
EPSS
Percentile
99.7%
An insufficient control of network message volume (CWE-406) vulnerability in FortiAnalyzer may allow an unauthenticated remote attacker to perform NTP amplification attacks (thereby causing reflected denial of service on arbitrary targets) via sending specially crafted mode 6 queries to the FortiAnalyzer built-in NTP server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortianalyzer | eq | 6.4.0 | |
| fortianalyzer | eq | 6.2.3 | |
| fortirecorder | eq | 6.0.1 | |
| fortirecorder | eq | 6.0.0 | |
| fortirecorder | eq | 2.7.7 |
Related
nessus
nessus
AIX 6.1 TL 8 : ntp (IV58068)
2014-06-17 00:00:00
AIX 6.1 TL 7 : ntp (IV58413)
2014-06-17 00:00:00
Oracle Linux 7 : ntp (ELSA-2016-3612)
2016-09-13 00:00:00
cert
cert
NTP can be abused to amplify denial-of-service attack traffic
2014-01-10 00:00:00
suse
suse
DDoS reflection attacks in ntp
2014-01-20 17:05:38
threatpost
threatpost
Volume of NTP Amplification Attacks Getting Louder
2014-04-29 13:03:29
NTP Amplification Blamed for 400 Gbps DDoS Attack
2014-02-11 12:21:35
PointDNS Recovers from Massive DDoS Attack
2014-05-12 15:35:26
checkpoint_advisories
checkpoint_advisories
NTP Servers Monlist Command Denial of Service (CVE-2013-5211)
2014-01-19 00:00:00
freebsd
freebsd
ntpd DRDoS / Amplification Attack using ntpdc monlist command
2014-01-01 00:00:00
ibm
ibm
zdt
zdt
NTP ntpd monlist Query Reflection - Denial of Service
2014-04-29 00:00:00
securityvulns
securityvulns
ntp traffic amplification
2014-01-14 00:00:00
[security bulletin] HPSBUX02960 SSRT101419 rev.1 - HP-UX Running NTP, Remote Denial of Service (DoS)
2014-01-14 00:00:00
TA14-013A: NTP Amplification Attacks Using CVE-2013-5211
2014-01-14 00:00:00
openvas
openvas
Juniper Networks Junos OS NTP Server Amplification Denial of Service Vulnerability
2014-07-31 00:00:00
Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2020-1314)
2020-03-24 00:00:00
Mageia: Security Advisory (MGASA-2014-0032)
2022-01-28 00:00:00
packetstorm
packetstorm
NTP Amplification Denial Of Service Tool
2014-07-16 00:00:00
exploitpack
exploitpack
NTP ntpd monlist Query Reflection - Denial of Service
2014-04-28 00:00:00
f5
f5
SOL15154 - NTP vulnerability CVE-2013-5211
2014-04-10 00:00:00
K15154 : NTP vulnerability CVE-2013-5211
2014-04-10 00:00:00
amazon
amazon
Medium: ntp
2021-09-08 23:35:00
Medium: ntp
2018-05-10 17:01:00
nvd
nvd
CVE-2013-5211
2014-01-02 14:59:03
cvelist
cvelist
CVE-2013-5211
2014-01-02 11:00:00
mageia
mageia
Updated ntp packages work around security vulnerability
2014-01-31 20:44:56
aix
aix
gentoo
gentoo
NTP: Traffic amplification
2014-01-16 00:00:00
ics
ics
NTP Reflection Attack
2018-09-06 12:00:00
checkpoint_security
checkpoint_security
Blocking NTP access on Gaia OS / IPSO OS (CVE-2013-5211)
2014-03-01 22:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:02.ntpd
2014-01-14 00:00:00
thn
thn
ubuntucve
ubuntucve
CVE-2013-5211
2014-01-02 00:00:00
metasploit
metasploit
NTP Monitor List Scanner
2010-01-27 23:25:17
prion
prion
Security feature bypass
2014-01-02 14:59:00
oraclelinux
oraclelinux
ntp security update
2016-09-09 00:00:00
ntp security update
2016-09-09 00:00:00
ntp security update
2018-12-19 00:00:00
slackware
slackware
ntp
2014-02-13 16:38:35
debiancve
debiancve
CVE-2013-5211
2014-01-02 14:59:03
cve
cve
CVE-2013-5211
2014-01-02 14:59:03
exploitdb
exploitdb
NTP ntpd monlist Query Reflection - Denial of Service
2014-04-28 00:00:00
vmware
vmware
VMware vSphere updates to third party libraries
2014-03-11 00:00:00
VMware vSphere updates to third party libraries
2014-03-11 00:00:00