Junos NTP Server Amplification Denial Of Service Vulnerability Network Vulnerability

Summary

DoS in NTP server

Impact

If NTP is enabled an attacker can exploit the control messages to use it as part of a DoS attack against a remote victim or as the target of an attack against the device itself.

Solution

New builds of Junos OS software are available from Juniper.

Insight

When an NTP client or server is enabled within the [edit system ntp] hierarchy level of the Junos configuration, REQ_MON_GETLIST and REQ_MON_GETLIST_1 control messages supported by the monlist feature within NTP may allow remote attackers to cause a denial of service. NTP is not enabled in Junos by default.

Affected

Junos OS 11.4, 12.1, 12.2, 12.3, 13.1, 13.2, 13.3

Detection

Check the OS build.

References

http://kb.juniper.net/JSA10613

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-5211
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Junos Firewall Bypass Vulnerability
Junos CVE-2009-3485
Junos Security Issue whith Proxy ARP Enabled
Junos CVE-2004-0468
Junos CSRF Protection Bypass Vulnerability in J-Web

Junos NTP Server Amplification Denial of Service Vulnerability

Take action and discover your vulnerabilities