Showing 1 - 10 of 10

CVE-2013-5211

Status Candidate

Overview

The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.

Related Files

HP Security Bulletin HPSBOV03505 1: Posted Sep 10, 2015; Authored by HP | Site hp.com; HP Security Bulletin HPSBOV03505 1 - Potential security vulnerabilities have been identified with the TCP/IP Services for OpenVMS running NTP. These vulnerabilities could be exploited remotely to allow unauthenticated attackers to execute code with the privileges of ntpd or cause a Denial of Service (DoS). Revision 1 of this advisory.; tags | advisory, denial of service, tcp, vulnerability; advisories | CVE-2013-5211, CVE-2014-9293, CVE-2014-9294, CVE-2014-9295, CVE-2014-9296; SHA-256 | 6bb3a5080fcc5cd3fa3ca04240ae84814580d927317fa3a57b6645ecaeda982a; Download | Favorite | View

NTP Amplification Denial Of Service Tool: Posted Jul 16, 2014; Authored by DaRkReD; Proof of concept code to exploit an NTP amplification attack. Written in Python.; tags | exploit, proof of concept, python; advisories | CVE-2013-5211; SHA-256 | 4825e58fe082ae9df2ef9e5db59a2b9dc9323b9a9efec7171608ac233a55b7c7; Download | Favorite | View

HP Security Bulletin HPSBUX02960 SSRT101419 3: Posted May 24, 2014; Authored by HP | Site hp.com; HP Security Bulletin HPSBUX02960 SSRT101419 3 - A potential security vulnerability has been identified with HP-UX running NTP. The vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 3 of this advisory.; tags | advisory, denial of service; systems | hpux; advisories | CVE-2013-5211; SHA-256 | e0bb8d4702ecd453b0bdb6a93fed59263c7330cdba9ffb831ed00b6833d62f0d; Download | Favorite | View

NTP DDoS Amplification: Posted May 5, 2014; Authored by Danilo PC; NTP distributed denial of service amplification tool that uses "get monlist".; tags | exploit, denial of service; advisories | CVE-2013-5211; SHA-256 | baaf6320ad214e35e7a2b7a7eb5035f1c589187e476175621d453bc6419fc028; Download | Favorite | View

NTP DDoS Amplification: Posted Apr 28, 2014; Authored by Danilo PC; NTP ntpd monlist query reflection denial of service exploit.; tags | exploit, denial of service; advisories | CVE-2013-5211; SHA-256 | fc458431c984a824aac0863ef7422ed300c3dc830b42f819b52b5db6f76ba518; Download | Favorite | View

VMware Security Advisory 2014-0002: Posted Mar 12, 2014; Authored by VMware | Site vmware.com; VMware Security Advisory 2014-0002 - VMware has updated vSphere third party libraries.; tags | advisory; advisories | CVE-2013-4332, CVE-2013-5211; SHA-256 | f68785a86cf03bdcb6949e31e03b46c73a1eada57e4d11d2ee15b03dcb905f3f; Download | Favorite | View

Slackware Security Advisory - ntp Updates: Posted Feb 15, 2014; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New ntp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue.; tags | advisory; systems | linux, slackware; advisories | CVE-2013-5211; SHA-256 | f24dc5740ec0db7df6d2b7fa0393c41089456451df322b6e8e82a908e5b509dc; Download | Favorite | View

Gentoo Linux Security Advisory 201401-08: Posted Jan 17, 2014; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201401-8 - NTP can be abused to amplify Denial of Service attack traffic. Versions less than 4.2.6_p5-r10 are affected.; tags | advisory, denial of service; systems | linux, gentoo; advisories | CVE-2013-5211; SHA-256 | bfee5ca74ecd0b48ef960b4e3d4b82173adcb82f55bd50bb8d7864079c00c3eb; Download | Favorite | View

FreeBSD Security Advisory - ntpd Denial Of Service: Posted Jan 15, 2014; Site security.freebsd.org; FreeBSD Security Advisory - The ntpd(8) daemon supports a query 'monlist' which provides a history of recent NTP clients without any authentication. An attacker can send 'monlist' queries and use that as an amplification of a reflection attack.; tags | advisory; systems | freebsd; advisories | CVE-2013-5211; SHA-256 | 855ebbd21f6a31190a872cdb3928fdba92ff66aa654805455eab3998917e5b1e; Download | Favorite | View

HP Security Bulletin HPSBUX02960 SSRT101419: Posted Jan 13, 2014; Authored by HP | Site hp.com; HP Security Bulletin HPSBUX02960 SSRT101419 - A potential security vulnerability has been identified with HP-UX running NTP. The vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory.; tags | advisory, denial of service; systems | hpux; advisories | CVE-2013-5211; SHA-256 | 2c4ac2dc0321928bc8d778690705abd7f032c6ad7074ee164ba06d6940806ffb; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 210 files
Ubuntu 64 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
Ersin Erenler 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

CVE-2013-5211

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems