{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-12-30T00:00:00", "descriptions": [{"lang": "en", "value": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-08T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "59288", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/59288"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"}, {"name": "openSUSE-SU-2014:1149", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"}, {"name": "HPSBUX02960", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"name": "TA14-013A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/ncas/alerts/TA14-013A"}, {"name": "64692", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/64692"}, {"name": "VU#348126", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/348126"}, {"name": "HPSBOV03505", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=144182594518755&w=2"}, {"name": "[oss-security] 20131230 CVE to the ntp monlist DDoS issue?", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2013/12/30/6"}, {"name": "59726", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/59726"}, {"name": "1030433", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1030433"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz"}, {"tags": ["x_refsource_MISC"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861"}, {"name": "[pool] 20111210 Odd surge in traffic today", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://lists.ntp.org/pipermail/pool/2011-December/005616.html"}, {"name": "[oss-security] 20131230 Re: CVE to the ntp monlist DDoS issue?", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://openwall.com/lists/oss-security/2013/12/30/7"}, {"name": "SSRT101419", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.ntp.org/show_bug.cgi?id=1532"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-5211", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "59288", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/59288"}, {"name": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232", "refsource": "CONFIRM", "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"}, {"name": "openSUSE-SU-2014:1149", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html"}, {"name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"}, {"name": "HPSBUX02960", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"name": "TA14-013A", "refsource": "CERT", "url": "http://www.us-cert.gov/ncas/alerts/TA14-013A"}, {"name": "64692", "refsource": "BID", "url": "http://www.securityfocus.com/bid/64692"}, {"name": "VU#348126", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/348126"}, {"name": "HPSBOV03505", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=144182594518755&w=2"}, {"name": "[oss-security] 20131230 CVE to the ntp monlist DDoS issue?", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2013/12/30/6"}, {"name": "59726", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/59726"}, {"name": "1030433", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1030433"}, {"name": "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz", "refsource": "CONFIRM", "url": "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz"}, {"name": "http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04", "refsource": "MISC", "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04"}, {"name": "http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc", "refsource": "CONFIRM", "url": "http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc"}, {"name": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861", "refsource": "CONFIRM", "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861"}, {"name": "[pool] 20111210 Odd surge in traffic today", "refsource": "MLIST", "url": "http://lists.ntp.org/pipermail/pool/2011-December/005616.html"}, {"name": "[oss-security] 20131230 Re: CVE to the ntp monlist DDoS issue?", "refsource": "MLIST", "url": "http://openwall.com/lists/oss-security/2013/12/30/7"}, {"name": "SSRT101419", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"name": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892", "refsource": "CONFIRM", "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892"}, {"name": "http://bugs.ntp.org/show_bug.cgi?id=1532", "refsource": "CONFIRM", "url": "http://bugs.ntp.org/show_bug.cgi?id=1532"}, {"name": "https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory", "refsource": "CONFIRM", "url": "https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T17:06:52.374Z"}, "title": "CVE Program Container", "references": [{"name": "59288", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/59288"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"}, {"name": "openSUSE-SU-2014:1149", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"}, {"name": "HPSBUX02960", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"name": "TA14-013A", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/ncas/alerts/TA14-013A"}, {"name": "64692", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/64692"}, {"name": "VU#348126", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/348126"}, {"name": "HPSBOV03505", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=144182594518755&w=2"}, {"name": "[oss-security] 20131230 CVE to the ntp monlist DDoS issue?", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2013/12/30/6"}, {"name": "59726", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/59726"}, {"name": "1030433", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1030433"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861"}, {"name": "[pool] 20111210 Odd surge in traffic today", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://lists.ntp.org/pipermail/pool/2011-December/005616.html"}, {"name": "[oss-security] 20131230 Re: CVE to the ntp monlist DDoS issue?", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://openwall.com/lists/oss-security/2013/12/30/7"}, {"name": "SSRT101419", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://bugs.ntp.org/show_bug.cgi?id=1532"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-5211", "datePublished": "2014-01-02T11:00:00", "dateReserved": "2013-08-15T00:00:00", "dateUpdated": "2024-08-06T17:06:52.374Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*", "matchCriteriaId": "DE554781-1EB9-446E-911F-6C11970C47F4", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*", "matchCriteriaId": "1CC55810-13AD-49D2-AFE5-A95F00824915", "versionEndExcluding": "4.2.7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:-:*:*:*:*:*:*", "matchCriteriaId": "8CAC15F6-514F-4BED-A2A5-E89F4349D8AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p0:*:*:*:*:*:*", "matchCriteriaId": "B481C553-B73E-4DA2-9D5E-3774FF846590", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p1:*:*:*:*:*:*", "matchCriteriaId": "2AFDFCA1-0D59-4973-ACFE-CB75BD934154", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p10:*:*:*:*:*:*", "matchCriteriaId": "A04F57D2-2D27-4FBF-8530-2AC3FB744E7C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p11:*:*:*:*:*:*", "matchCriteriaId": "518C32C8-0558-46A1-8532-90DBA1616221", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p12:*:*:*:*:*:*", "matchCriteriaId": "7E43BA6C-4FAE-4B96-90D3-E212BD21233D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p13:*:*:*:*:*:*", "matchCriteriaId": "2D4E0EEC-92AD-43B2-8539-921AAA0BAF8A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p14:*:*:*:*:*:*", "matchCriteriaId": "5EC4F7DB-7769-4F81-B301-C973D0EB2E01", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p15:*:*:*:*:*:*", "matchCriteriaId": "3862A517-5302-4CC5-A553-E8ED8F408984", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p16:*:*:*:*:*:*", "matchCriteriaId": "5E23550B-55D9-4D2A-868C-1F2E5833FFD3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p17:*:*:*:*:*:*", "matchCriteriaId": "703DD909-3E63-46AF-BDBD-DB99035D17C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p18:*:*:*:*:*:*", "matchCriteriaId": "9307FD4B-AF64-476B-A238-1C8C9E8D7938", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p19:*:*:*:*:*:*", "matchCriteriaId": "19D2387E-78A0-42BD-B33E-5CE2858888DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p2:*:*:*:*:*:*", "matchCriteriaId": "EF76B320-FE22-4528-9189-982909B67EA4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p20:*:*:*:*:*:*", "matchCriteriaId": "4212F77B-AD87-47CE-972E-ADDF3E0A855C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p21:*:*:*:*:*:*", "matchCriteriaId": "26DC7E1A-9F45-4F71-8EBE-8C4811757511", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p22:*:*:*:*:*:*", "matchCriteriaId": "93AEBFB8-C063-4862-ADA5-32C8AD6A215D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p23:*:*:*:*:*:*", "matchCriteriaId": "AD38DF5B-0FE3-46B0-9313-0BEDB2FB85BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p24:*:*:*:*:*:*", "matchCriteriaId": "19B1C33A-80DD-4942-81A3-5A91B77B902D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p25:*:*:*:*:*:*", "matchCriteriaId": "FE315238-7191-4A2E-A3C6-2162BE589C78", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p3:*:*:*:*:*:*", "matchCriteriaId": "5453B367-AF6E-49F1-A448-EEC9BD30F774", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p4:*:*:*:*:*:*", "matchCriteriaId": "E0040B79-5D07-4BEA-8861-8D827FB31735", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p5:*:*:*:*:*:*", "matchCriteriaId": "D00C1A08-1AFF-4AED-9F32-6F7400E24427", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p6:*:*:*:*:*:*", "matchCriteriaId": "6478C98A-FC07-457D-996D-53B9361B52D3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p7:*:*:*:*:*:*", "matchCriteriaId": "C1D01BD4-27BF-49BD-9305-F26E0EC778AD", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p8:*:*:*:*:*:*", "matchCriteriaId": "F4E82220-4E07-41B0-952A-9C0CC0973D60", "vulnerable": true}, {"criteria": "cpe:2.3:a:ntp:ntp:4.2.7:p9:*:*:*:*:*:*", "matchCriteriaId": "38F02F01-569A-445D-A954-D9369E0B8850", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:*", "matchCriteriaId": "D7B037A8-72A6-4DFF-94B2-D688A5F6F876", "vulnerable": true}, {"criteria": "cpe:2.3:o:oracle:linux:7:-:*:*:*:*:*:*", "matchCriteriaId": "44B8FEDF-6CB0-46E9-9AD7-4445B001C158", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013."}, {"lang": "es", "value": "La caracter\u00edstica monlist en ntp_request.c en ntpd en NTP antes 4.2.7p26 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (amplificaci\u00f3n de tr\u00e1fico) a trav\u00e9s de solicitudes (1) REQ_MON_GETLIST o (2) solicitudes REQ_MON_GETLIST_1, como han sido explotados en diciembre de 2013."}], "id": "CVE-2013-5211", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-01-02T14:59:03.470", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking"], "url": "http://bugs.ntp.org/show_bug.cgi?id=1532"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://lists.ntp.org/pipermail/pool/2011-December/005616.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"source": "cve@mitre.org", "tags": ["Mailing List"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=144182594518755&w=2"}, {"source": "cve@mitre.org", "tags": ["Mailing List"], "url": "http://openwall.com/lists/oss-security/2013/12/30/6"}, {"source": "cve@mitre.org", "tags": ["Mailing List"], "url": "http://openwall.com/lists/oss-security/2013/12/30/7"}, {"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "http://secunia.com/advisories/59288"}, {"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "http://secunia.com/advisories/59726"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/348126"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/64692"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1030433"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.us-cert.gov/ncas/alerts/TA14-013A"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking"], "url": "http://bugs.ntp.org/show_bug.cgi?id=1532"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://lists.ntp.org/pipermail/pool/2011-December/005616.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "http://marc.info/?l=bugtraq&m=138971294629419&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=144182594518755&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "http://openwall.com/lists/oss-security/2013/12/30/6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "http://openwall.com/lists/oss-security/2013/12/30/7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Not Applicable"], "url": "http://secunia.com/advisories/59288"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Not Applicable"], "url": "http://secunia.com/advisories/59726"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/348126"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/64692"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1030433"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.us-cert.gov/ncas/alerts/TA14-013A"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "https://puppet.com/security/cve/puppetlabs-ntp-nov-2015-advisory"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "ntp: DoS in monlist feature in ntpd", "id": "1047854", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1047854"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "status": "draft"}, "details": ["The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013."], "name": "CVE-2013-5211", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "ntp", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Will not fix", "package_name": "ntp", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "ntp", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2010-04-20T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2013-5211\nhttps://nvd.nist.gov/vuln/detail/CVE-2013-5211\nhttps://www.us-cert.gov/ncas/alerts/TA14-013A"], "statement": "This issue does not affect the default configuration of ntp packages shipped with Red Hat Enterprise Linux, which does not allow remote ntpd control queries. User changing ntpd access control configuration should consider reviewing additional information provided via https://bugzilla.redhat.com/show_bug.cgi?id=1047854#c27 to avoid exposing their systems to this traffic amplification issue.", "threat_severity": "Moderate"}