Lucene search
This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.PHOTONOS_PHSA-2017-0003_NTP.NASLHistoryFeb 07, 2019 - 12:00 a.m.
Photon OS 1.0: Ntp PHSA-2017-0003
2019-02-0700:00:00
This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.965 High
EPSS
Percentile
99.6%
An update of the ntp package has been released.
#
# (C) Tenable Network Security, Inc.`
#
# The descriptive text and package checks in this plugin were
# extracted from VMware Security Advisory PHSA-2017-0003. The text
# itself is copyright (C) VMware, Inc.
include('compat.inc');
if (description)
{
script_id(121668);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/05/24");
script_cve_id(
"CVE-2016-7426",
"CVE-2016-7427",
"CVE-2016-7428",
"CVE-2016-7429",
"CVE-2016-7431",
"CVE-2016-7433",
"CVE-2016-7434",
"CVE-2016-9310",
"CVE-2016-9311"
);
script_name(english:"Photon OS 1.0: Ntp PHSA-2017-0003");
script_set_attribute(attribute:"synopsis", value:
"The remote PhotonOS host is missing multiple security updates.");
script_set_attribute(attribute:"description", value:
"An update of the ntp package has been released.");
script_set_attribute(attribute:"see_also", value:"https://github.com/vmware/photon/wiki/Security-Updates-19.md");
script_set_attribute(attribute:"solution", value:
"Update the affected Linux packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-9310");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/01/27");
script_set_attribute(attribute:"patch_publication_date", value:"2017/01/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/02/07");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:ntp");
script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:photonos:1.0");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"PhotonOS Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/PhotonOS/release", "Host/PhotonOS/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/PhotonOS/release");
if (isnull(release) || release !~ "^VMware Photon") audit(AUDIT_OS_NOT, "PhotonOS");
if (release !~ "^VMware Photon (?:Linux|OS) 1\.0(\D|$)") audit(AUDIT_OS_NOT, "PhotonOS 1.0");
if (!get_kb_item("Host/PhotonOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "PhotonOS", cpu);
flag = 0;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"ntp-debuginfo-4.2.8p9-1.ph1")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ntp");
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7426
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7427
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7428
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7429
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7431
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7433
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7434
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9310
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9311
github.com/vmware/photon/wiki/Security-Updates-19.md
Related
ibm
ibm
huawei
huawei
Security Advisory - Multiple NTPd Vulnerabilities in Huawei Products
2017-11-29 00:00:00
nessus
nessus
Photon OS 1.0: Ntpstat PHSA-2017-0003
2019-02-07 00:00:00
openSUSE Security Update : ntp (openSUSE-2016-1525)
2016-12-29 00:00:00
SUSE SLES12 Security Update : ntp (SUSE-SU-2016:3196-1)
2016-12-21 00:00:00
freebsd
freebsd
FreeBSD -- Multiple vulnerabilities of ntp
2016-12-22 00:00:00
ntp -- multiple vulnerabilities
2016-11-21 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:39.ntp
2016-12-22 00:00:00
cert
cert
NTP.org ntpd contains multiple denial of service vulnerabilities
2016-11-21 00:00:00
archlinux
archlinux
[ASA-201611-28] ntp: multiple issues
2016-11-26 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:3196-1)
2021-04-19 00:00:00
NTP.org 'ntpd' 4.0.90 - 4.2.8p8, 4.3.0 - 4.3.93 Multiple Vulnerabilities (Nov 2016)
2016-06-03 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:3195-1)
2021-04-19 00:00:00
symantec
symantec
SA139 : November 2016 NTP Security Vulnerabilities
2017-01-12 08:00:00
slackware
slackware
[slackware-security] ntp
2016-11-21 19:25:10
cisco
cisco
centos
centos
ntp, ntpdate, sntp security update
2017-02-06 11:25:17
fedora
fedora
[SECURITY] Fedora 24 Update: ntp-4.2.6p5-43.fc24
2016-12-07 20:21:32
[SECURITY] Fedora 25 Update: ntp-4.2.6p5-43.fc25
2016-12-08 03:53:53
[SECURITY] Fedora 23 Update: ntp-4.2.6p5-43.fc23
2016-12-08 03:20:50
redhat
redhat
(RHSA-2017:0252) Moderate: ntp security update
2017-02-06 03:59:03
oraclelinux
oraclelinux
ntp security update
2017-02-06 00:00:00
ntp security, bug fix, and enhancement update
2018-04-16 00:00:00
ntp security update
2017-10-26 00:00:00
amazon
amazon
Medium: ntp
2017-01-04 17:00:00
Medium: ntp
2018-05-10 17:11:00
aix
aix
There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX.
2017-02-13 15:32:47
mageia
mageia
Updated ntp packages fix security vulnerabilities
2016-12-08 10:33:24
ubuntu
ubuntu
NTP vulnerabilities
2017-07-05 00:00:00
NTP vulnerabilities
2019-01-23 00:00:00
f5
f5
K80996302 : Multiple NTP vulnerabilities
2016-12-16 00:00:00
K63326092 : NTP vulnerability CVE-2016-7434
2016-11-29 00:00:00
SOL63326092 - NTP vulnerability CVE-2016-7434
2016-11-29 00:00:00
cloudfoundry
cloudfoundry
USN-3349-1: NTP vulnerabilities | Cloud Foundry
2017-08-04 00:00:00
myhack58
myhack58
cve
cve
prion
prion
Code injection
2017-01-13 16:59:00
Design/Logic Flaw
2017-01-13 16:59:00
Design/Logic Flaw
2017-01-13 16:59:00
seebug
seebug
ntpd remote pre-auth DoS (CVE-2016-7434)
2016-11-23 00:00:00
thn
thn
NTP DoS Exploit Released — Update Your Servers to Patch 10 Flaws
2016-11-22 22:49:00
threatpost
threatpost
Exploit Code Released for NTP Vulnerability
2016-11-22 10:30:41
cvelist
cvelist
packetstorm
packetstorm
ntpd 4.2.7.p22 / 4.3.0 Denial Of Service
2016-11-22 00:00:00
redhatcve
redhatcve
nvd
nvd
exploitpack
exploitpack
NTP 4.2.8p8 - Denial of Service
2016-11-21 00:00:00
debiancve
debiancve
hackerone
hackerone
zdt
zdt
NTP 4.2.8p8 - Denial of Service Exploit
2016-11-23 00:00:00
checkpoint_advisories
checkpoint_advisories
NTP Daemon _IO_str_init_static_internal Denial of Service (CVE-2016-7434)
2016-11-23 00:00:00
ubuntucve
ubuntucve
veracode
veracode
Denial Of Service (DoS)
2019-05-02 06:30:44
Denial Of Service (DoS)
2019-05-02 06:30:44
Denial Of Service (DoS)
2019-01-15 09:15:56
exploitdb
exploitdb
NTP 4.2.8p8 - Denial of Service
2016-11-21 00:00:00
talos
talos
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.965 High
EPSS
Percentile
99.6%
Related for PHOTONOS_PHSA-2017-0003_NTP.NASL