Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 3 subscribers
  • Views 1921 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

NTP vulnerability

JonEtkins
Several vulnerabilities in NTP were revealed today, just in time for everyone to be away on vacation!

https://ics-cert.us-cert.gov/advisories/ICSA-14-353-01

Can we expect a hotfix for this?


This thread was automatically locked due to age.
Parents
  • 0
    NTP access is limited to pool.ntp.org in most setups. So the attacker would first have to hack one of those servers in the pool in order to exploit it. Besides that, ntpd normally has very limited permissions. Still, it should be patched ASAP!
Reply
  • 0
    NTP access is limited to pool.ntp.org in most setups. So the attacker would first have to hack one of those servers in the pool in order to exploit it. Besides that, ntpd normally has very limited permissions. Still, it should be patched ASAP!
Children
No Data
Cookie Information Banner