Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
2
CVSSv3

CVE-2009-3563

CVSSv4: NA | CVSSv3: 2 | CVSSv2: 6.4 | VMScore: 740 | EPSS: 0.64951 | KEV: Not Included
Published: 09/12/2009 Updated: 21/11/2024

Vulnerability Summary

ntp_request.c in ntpd in NTP prior to 4.2.4p8, and 4.2.5, allows remote malicious users to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ntp ntp

ntp ntp 4.0.72

ntp ntp 4.0.73

ntp ntp 4.0.90

ntp ntp 4.0.91

ntp ntp 4.0.92

ntp ntp 4.0.93

ntp ntp 4.0.94

ntp ntp 4.0.95

ntp ntp 4.0.96

ntp ntp 4.0.97

ntp ntp 4.0.98

ntp ntp 4.0.99

ntp ntp 4.1.0

ntp ntp 4.1.2

ntp ntp 4.2.0

ntp ntp 4.2.2

ntp ntp 4.2.2p1

ntp ntp 4.2.2p2

ntp ntp 4.2.2p3

ntp ntp 4.2.5

Vendor Advisories

Debian CVElist Bug Report Logs: ntp: CVE-2009-3563 DoS through mode 7 packets
Debian Bug report logs - #560074 ntp: CVE-2009-3563 DoS through mode 7 packets Package: ntp; Maintainer for ntp is Debian NTP Team <ntp@packagesdebianorg>; Source for ntp is src:ntp (PTS, buildd, popcon) Reported by: Nico Golde <nion@debianorg> Date: Tue, 8 Dec 2009 18:54:02 UTC Severity: grave Tags: security F ...
Ubuntu Security Notice: ntp vulnerability
Robin Park and Dmitri Vinokurov discovered a logic error in ntpd A remote attacker could send a crafted NTP mode 7 packet with a spoofed IP address of an affected server and cause a denial of service via CPU and disk resource consumption ...
Debian Security Advisories: DSA-1948-1 ntp -- denial of service
Robin Park and Dmitri Vinokurov discovered that the daemon component of the ntp package, a reference implementation of the NTP protocol, is not properly reacting to certain incoming packets An unexpected NTP mode 7 packet (MODE_PRIVATE) with spoofed IP data can lead ntpd to reply with a mode 7 response to the spoofed address This may result in th ...
Debian Security Advisories: DSA-1992-1 chrony -- several vulnerabilities
Several vulnerabilities have been discovered in chrony, a pair of programs which are used to maintain the accuracy of the system clock on a computer This issues are similar to the NTP security flaw CVE-2009-3563 The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2010-0292 chronyd replies to all cmdmon packe ...
Cisco: Network Time Protocol Package Remote Message Loop Denial of Service Vulnerability
The Network Time Protocol (NTP) package contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition The vulnerability is due to an error in handling certain malformed messages An unauthenticated, remote attacker could send a malicious NTP packet with a spoofed source IP address to a ...

References

NVD-CWE-Otherhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560074https://usn.ubuntu.com/867-1/https://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20091208-CVE-2009-3563https://www.first.org/epsshttps://www.kb.cert.org/vuls/id/568372ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2010-005.txt.aschttp://aix.software.ibm.com/aix/efixes/security/xntpd_advisory.aschttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560074http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691http://lists.vmware.com/pipermail/security-announce/2010/000082.htmlhttp://marc.info/?l=bugtraq&m=130168580504508&w=2http://marc.info/?l=bugtraq&m=130168580504508&w=2http://marc.info/?l=bugtraq&m=136482797910018&w=2http://marc.info/?l=bugtraq&m=136482797910018&w=2http://secunia.com/advisories/37629http://secunia.com/advisories/37922http://secunia.com/advisories/38764http://secunia.com/advisories/38794http://secunia.com/advisories/38832http://secunia.com/advisories/38834http://secunia.com/advisories/39593http://security-tracker.debian.org/tracker/CVE-2009-3563http://securitytracker.com/id?1023298http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021781.1-1http://support.avaya.com/css/P8/documents/100071808http://support.ntp.org/bin/view/Main/SecurityNotice#DoS_attack_from_certain_NTP_modehttp://www-01.ibm.com/support/docview.wss?uid=isg1IZ68659http://www-01.ibm.com/support/docview.wss?uid=isg1IZ71047http://www.debian.org/security/2009/dsa-1948http://www.kb.cert.org/vuls/id/568372http://www.kb.cert.org/vuls/id/MAPG-7X7V6Jhttp://www.kb.cert.org/vuls/id/MAPG-7X7VD7http://www.securityfocus.com/bid/37255http://www.vupen.com/english/advisories/2010/0510http://www.vupen.com/english/advisories/2010/0528http://www.vupen.com/english/advisories/2010/0993https://bugzilla.redhat.com/show_bug.cgi?id=531213https://lists.ntp.org/pipermail/announce/2009-December/000086.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11225https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12141https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19376https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7076https://rhn.redhat.com/errata/RHSA-2009-1648.htmlhttps://rhn.redhat.com/errata/RHSA-2009-1651.htmlhttps://rhn.redhat.com/errata/RHSA-2010-0095.htmlhttps://support.ntp.org/bugs/show_bug.cgi?id=1331https://www.kb.cert.org/vuls/id/417980https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00763.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg00809.htmlftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2010-005.txt.aschttp://aix.software.ibm.com/aix/efixes/security/xntpd_advisory.aschttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560074http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10673http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691http://lists.vmware.com/pipermail/security-announce/2010/000082.htmlhttp://marc.info/?l=bugtraq&m=130168580504508&w=2http://marc.info/?l=bugtraq&m=130168580504508&w=2http://marc.info/?l=bugtraq&m=136482797910018&w=2http://marc.info/?l=bugtraq&m=136482797910018&w=2http://secunia.com/advisories/37629http://secunia.com/advisories/37922http://secunia.com/advisories/38764http://secunia.com/advisories/38794http://secunia.com/advisories/38832http://secunia.com/advisories/38834http://secunia.com/advisories/39593http://security-tracker.debian.org/tracker/CVE-2009-3563http://securitytracker.com/id?1023298http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021781.1-1http://support.avaya.com/css/P8/documents/100071808http://support.ntp.org/bin/view/Main/SecurityNotice#DoS_attack_from_certain_NTP_modehttp://www-01.ibm.com/support/docview.wss?uid=isg1IZ68659http://www-01.ibm.com/support/docview.wss?uid=isg1IZ71047http://www.debian.org/security/2009/dsa-1948http://www.kb.cert.org/vuls/id/568372http://www.kb.cert.org/vuls/id/MAPG-7X7V6Jhttp://www.kb.cert.org/vuls/id/MAPG-7X7VD7http://www.securityfocus.com/bid/37255http://www.vupen.com/english/advisories/2010/0510http://www.vupen.com/english/advisories/2010/0528http://www.vupen.com/english/advisories/2010/0993https://bugzilla.redhat.com/show_bug.cgi?id=531213https://lists.ntp.org/pipermail/announce/2009-December/000086.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11225https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12141https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19376https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7076https://rhn.redhat.com/errata/RHSA-2009-1648.htmlhttps://rhn.redhat.com/errata/RHSA-2009-1651.htmlhttps://rhn.redhat.com/errata/RHSA-2010-0095.htmlhttps://support.ntp.org/bugs/show_bug.cgi?id=1331https://www.kb.cert.org/vuls/id/417980https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00763.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg00809.html
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-42599CVE-2025-3808phpgurukulinsecure direct object referenceCVE-2025-3840CVE-2025-43967men salon management systemdenial of servicevirtuemart component for joomlapritunlLFICVE-2025-32433CVE-2022-47112
Home
/
Search Results
/
CVE-2009-3563
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook