Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Network Time Foundation ntpd Service Network Traffic Amplification Issue

cisco-sa-CVE-2013-5211 · Low · Published · Updated

A vulnerability in the Network Time Protocol (NTP) package of several Cisco products could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to processing MODE_PRIVATE (Mode 7) NTP control messages, which have a large amplification vector. An attacker could exploit this vulnerability by sending Mode 7 control requests to NTP servers and observing responses amplified up to 5,500 times in size. An exploit could allow the attacker to cause a DoS condition in which the affected NTP server is forced to process and respond with large response data.

Cisco advisory · CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2013-5211
Cisco Bug IDsCSCum52148, CSCus03224, CSCtd75033, CSCum76937, CSCum71311, CSCum93691, CSCun23321, CSCun44909, CSCun84909, CSCun84918, CSCun84924, CSCun84934, CSCun84943, CSCuo21109, CSCun90157, CSCur38341
CVSS ScoreBase NA
Product Names From Source
Cisco Application and Content Networking System (ACNS) Software, Cisco Emergency Responder, Cisco Unified MeetingPlace, Cisco Unified Communications Manager, Cisco Unified Contact Center Express, Cisco Video Surveillance Operations Manager Software, Cisco Finesse, Cisco SocialMiner, Cisco MediaSense, Cisco MXE 3500 (Media Experience Engine), Cisco Videoscape Distribution Suite Transparent Caching (VDS TC), Cisco Digital Content Manager (DCM) Software, Cisco Unified Intelligence Center, Cisco NX-OS Software 4.1(2), Cisco NX-OS Software 4.1(3), Cisco NX-OS Software 4.1(4), Cisco NX-OS Software 4.1(5), Cisco NX-OS Software 5.0(2a), Cisco NX-OS Software 5.0(3), Cisco NX-OS Software 5.0(5), Cisco NX-OS Software 4.2(2a), Cisco NX-OS Software 4.2(3), Cisco NX-OS Software 4.2(4), Cisco NX-OS Software 4.2(6), Cisco NX-OS Software 4.2(8), Cisco NX-OS Software 5.1(1), Cisco NX-OS Software 5.1(1a), Cisco NX-OS Software 5.1(3), Cisco NX-OS Software 5.1(4), Cisco NX-OS Software 5.1(5), Cisco NX-OS Software 5.1(6), Cisco NX-OS Software 5.2(1), Cisco NX-OS Software 5.2(3a), Cisco NX-OS Software 5.2(4), Cisco NX-OS Software 5.2(5), Cisco NX-OS Software 5.2(7), Cisco NX-OS Software 5.2(9), Cisco NX-OS Software 6.1(1), Cisco NX-OS Software 6.1(2), Cisco NX-OS Software 6.1(3), Cisco NX-OS Software 6.1(4), Cisco NX-OS Software 6.1(4a), Cisco NX-OS Software 4.0(0)N1(1a), Cisco NX-OS Software 4.0(0)N1(2), Cisco NX-OS Software 4.0(0)N1(2a), Cisco NX-OS Software 4.0(1a)N1(1), Cisco NX-OS Software 4.0(1a)N1(1a), Cisco NX-OS Software 4.0(1a)N2(1), Cisco NX-OS Software 4.0(1a)N2(1a), Cisco NX-OS Software 4.1(2)E1(1), Cisco NX-OS Software 4.1(2)E1(1b), Cisco NX-OS Software 4.1(2)E1(1d), Cisco NX-OS Software 4.1(2)E1(1e), Cisco NX-OS Software 4.1(2)E1(1f), Cisco NX-OS Software 4.1(2)E1(1g), Cisco NX-OS Software 4.1(2)E1(1h), Cisco NX-OS Software 4.1(2)E1(1i), Cisco NX-OS Software 4.1(2)E1(1j), Cisco NX-OS Software 4.1(3)N1(1), Cisco NX-OS Software 4.1(3)N1(1a), Cisco NX-OS Software 4.1(3)N2(1), Cisco NX-OS Software 4.1(3)N2(1a), Cisco NX-OS Software 4.2(1)N1(1), Cisco NX-OS Software 4.2(1)N2(1), Cisco NX-OS Software 4.2(1)N2(1a), Cisco NX-OS Software 5.0(2)N1(1), Cisco NX-OS Software 5.0(2)N2(1), Cisco NX-OS Software 5.0(2)N2(1a), Cisco NX-OS Software 5.0(3)N1(1c), Cisco NX-OS Software 5.0(3)N2(1), Cisco NX-OS Software 5.0(3)N2(2), Cisco NX-OS Software 5.0(3)N2(2a), Cisco NX-OS Software 5.0(3)N2(2b), Cisco NX-OS Software 5.0(3)U1(1), Cisco NX-OS Software 5.0(3)U1(1a), Cisco NX-OS Software 5.0(3)U1(1b), Cisco NX-OS Software 5.0(3)U1(1d), Cisco NX-OS Software 5.0(3)U1(2), Cisco NX-OS Software 5.0(3)U1(2a), Cisco NX-OS Software 5.0(3)U2(1), Cisco NX-OS Software 5.0(3)U2(2), Cisco NX-OS Software 5.0(3)U2(2a), Cisco NX-OS Software 5.0(3)U2(2b), Cisco NX-OS Software 5.0(3)U2(2c), Cisco NX-OS Software 5.0(3)U2(2d), Cisco NX-OS Software 5.0(3)U3(1), Cisco NX-OS Software 5.0(3)U3(2), Cisco NX-OS Software 5.0(3)U3(2a), Cisco NX-OS Software 5.0(3)U3(2b), Cisco NX-OS Software 5.0(3)U4(1), Cisco NX-OS Software 5.0(3)U5(1), Cisco NX-OS Software 5.0(3)U5(1a), Cisco NX-OS Software 5.0(3)U5(1b), Cisco NX-OS Software 5.0(3)U5(1c), Cisco NX-OS Software 5.0(3)U5(1d), Cisco NX-OS Software 5.0(3)U5(1e), Cisco NX-OS Software 5.0(3)U5(1f), Cisco NX-OS Software 5.0(3)U5(1g), Cisco NX-OS Software 5.0(3)U5(1h), Cisco NX-OS Software 5.1(3)N1(1), Cisco NX-OS Software 5.1(3)N1(1a), Cisco NX-OS Software 5.1(3)N2(1), Cisco NX-OS Software 5.1(3)N2(1a), Cisco NX-OS Software 5.1(3)N2(1b), Cisco NX-OS Software 5.1(3)N2(1c), Cisco NX-OS Software 5.2(1)N1(1), Cisco NX-OS Software 5.2(1)N1(1a), Cisco NX-OS Software 5.2(1)N1(1b), Cisco NX-OS Software 5.2(1)N1(2), Cisco NX-OS Software 5.2(1)N1(2a), Cisco NX-OS Software 5.2(1)N1(3), Cisco NX-OS Software 5.2(1)N1(4), Cisco NX-OS Software 5.2(1)N1(5), Cisco NX-OS Software 5.2(1)N1(6), Cisco NX-OS Software 6.0(1), Cisco NX-OS Software 6.0(2), Cisco NX-OS Software 6.0(3), Cisco NX-OS Software 6.0(4), Cisco NX-OS Software 6.0(2)U1(1), Cisco NX-OS Software 6.0(2)U1(2), Cisco NX-OS Software 6.0(2)U1(1a), Cisco NX-OS Software 6.0(2)U1(3), Cisco NX-OS Software 6.2(2), Cisco NX-OS Software 6.2(2a), Cisco NX-OS Software

Related Products

Product CVE Evidence
Cisco Videoscape Distribution Suite Transparent Caching (VDS TC) CVE-2013-5211 Cisco OpenVuln
Cisco Video Surveillance Operations Manager Software CVE-2013-5211 Cisco OpenVuln
Cisco Unified MeetingPlace CVE-2013-5211 Cisco OpenVuln
Cisco Unified Intelligence Center CVE-2013-5211 Cisco OpenVuln
Cisco Unified Contact Center Express CVE-2013-5211 Cisco OpenVuln
Cisco Unified Contact Center CVE-2013-5211 Cisco OpenVuln
Cisco Unified Communications Manager CVE-2013-5211 Cisco OpenVuln
Cisco SocialMiner CVE-2013-5211 Cisco OpenVuln
Cisco NX-OS Software CVE-2013-5211 Cisco OpenVuln
Cisco MediaSense CVE-2013-5211 Cisco OpenVuln
Cisco MXE 3500 (Media Experience Engine) CVE-2013-5211 Cisco OpenVuln
Cisco Finesse CVE-2013-5211 Cisco OpenVuln
Cisco Emergency Responder CVE-2013-5211 Cisco OpenVuln
Cisco Digital Content Manager (DCM) Software CVE-2013-5211 Cisco OpenVuln
Cisco Application and Content Networking System (ACNS) Software CVE-2013-5211 Cisco OpenVuln
Application and Content Networking System (ACNS) Software CVE-2013-5211 Cisco OpenVuln