Microsoft NTP Time Synchronization Spoof Weakness

It is reported that the NTP implementation in Microsoft operating systems is vulnerable to time spoofing attacks.

An attacker may be able to alter the time on the domain controller, causing the entire domain to synchronize with the attacker specified time in Windows 2000 operating systems. With Windows XP and 2003 operating systems, an attacker may be able to create very large differences between server and workstation times.

This weakness may allow an attacker to deny service to legitimate users, as correct time is required for many operations, including domain authentication, X.509 certificate expiration times. Other attacks may also be possible.

This weakness is reported to exist in all versions of Microsoft operating systems that include Active Directory support.


Privacy Statement
Copyright 2010, SecurityFocus