NTP CVE-2015-1798 Man in the Middle Security Bypass Vulnerability

Bugtraq ID: 73951
Class: Design Error
CVE: CVE-2015-1798
Remote: Yes
Local: No
Published: Apr 07 2015 12:00AM
Updated: May 23 2017 04:24PM
Credit: Miroslav Lichvár of Red Hat.
Vulnerable: Ubuntu Ubuntu Linux 14.10
Ubuntu Ubuntu Linux 14.04 LTS
Ubuntu Ubuntu Linux 12.04 LTS i386
Ubuntu Ubuntu Linux 12.04 LTS amd64
Slackware Slackware Linux 14.1
Slackware Slackware Linux 14.0
Slackware Slackware Linux 13.37
Slackware Slackware Linux 13.1
Slackware Slackware Linux 13.0
Rockwell Automation Stratix 5900 0
Oracle Linux 0
Oracle Enterprise Linux 7
Oracle Enterprise Linux 6.2
Oracle Enterprise Linux 6
Meinberg Network Time Protocol 4.2.8p1
Meinberg Network Time Protocol 4.2.8
Meinberg Network Time Protocol 4.2.7p230
Meinberg Network Time Protocol 4.2.7p11
Meinberg Network Time Protocol 4.2.7p10
Meinberg Network Time Protocol 4.2.7
Meinberg Network Time Protocol 4.2.6p5
Meinberg Network Time Protocol 4.2.6p3
Meinberg Network Time Protocol 4.2.6p2
Meinberg Network Time Protocol 4.2.6p1
Meinberg Network Time Protocol 4.2.6
Meinberg Network Time Protocol 4.2.5p99
IBM SmartCloud Provisioning for Software Virtual Appliance 2.1
IBM SmartCloud Entry 3.2
IBM SmartCloud Entry 3.1
IBM SmartCloud Entry 2.2
IBM SmartCloud Entry 3.2.0.4 Appliance FP
IBM SmartCloud Entry 3.1.0.4 Appliance FP
IBM SmartCloud Entry 2.4.0.3 Appliance FP
IBM SmartCloud Entry 2.4.0
IBM SmartCloud Entry 2.3.0.3 Appliance FP
IBM SmartCloud Entry 2.3.0
IBM SmartCloud Entry 2.2.0.3 Appliance FP
IBM Security Network Protection 5.3
IBM Security Network Protection 5.2.0
IBM Security Access Manager for Mobile 9.0
IBM Security Access Manager for Mobile 8.0.1.3
IBM Security Access Manager for Mobile 8.0.1.2
IBM Security Access Manager for Mobile 8.0.1.1
IBM Security Access Manager for Mobile 8.0.0.0
HP HP-UX B.11.31
Gentoo Linux
FreeBSD FreeBSD 9.3
FreeBSD FreeBSD 9.2
FreeBSD FreeBSD 9.1
FreeBSD FreeBSD 9.0
FreeBSD FreeBSD 8.4
FreeBSD FreeBSD 8.3
FreeBSD FreeBSD 8.2
FreeBSD FreeBSD 8.1
FreeBSD FreeBSD 8.0
FreeBSD FreeBSD 7.4
FreeBSD FreeBSD 7.3
FreeBSD FreeBSD 10.1
FreeBSD FreeBSD 10.0
Extremenetworks Summit WM3000 Series 0
Extremenetworks Purview 6.3.0.0
Extremenetworks NetSight 6.3.0.0
Extremenetworks NAC(IA) 6.3.0.0
Extremenetworks IDS/IPS 8.3.0.0
Extremenetworks IdentiFi Wireless 10.11
Extremenetworks ExtremeXOS 21.1
Extremenetworks ExtremeXOS 16.2
Extremenetworks ExtremeXOS 15.7
Extremenetworks ExtremeXOS 15.4.1.0
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Cisco Unified Computing System Central Software 1.1
Cisco Unified Computing System Central Software 1.0
Cisco Network Convergence System 6000 Series Routers 5.0.1
Cisco Network Convergence System 6000 Series Routers 5.0
Cisco IOS XR Software 0
Apple Mac OS X 10.10
Apple Mac OS X 10.9.5
Apple Mac OS X 10.8.5
Apple Mac Os X 10.10.3
Apple Mac OS X 10.10.2
Apple Mac OS X 10.10.1
Apple Mac OS X 10.10
Not Vulnerable: Rockwell Automation Stratix 5900 15.6.3
Extremenetworks Purview 6.3.0.182
Extremenetworks NetSight 6.3.0.182
Extremenetworks NAC(IA) 6.3.0.182
Extremenetworks IDS/IPS 8.3.0.350
Extremenetworks IdentiFi Wireless 10.11.1
Extremenetworks ExtremeXOS 21.1.1
Extremenetworks ExtremeXOS 16.2.1
Extremenetworks ExtremeXOS 16.1.2
Extremenetworks ExtremeXOS 15.7.2
Extremenetworks ExtremeXOS 15.6.4
Apple Mac Os X 10.10.4


 

Privacy Statement
Copyright 2010, SecurityFocus