CVE Vulnerabilities

CVE-2016-1384

Published: Apr 20, 2016 | Modified: Dec 03, 2016
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The NTP implementation in Cisco IOS 15.1 and 15.5 and IOS XE 3.2 through 3.17 allows remote attackers to modify the system time via crafted packets, aka Bug ID CSCux46898.

Affected Software

Name Vendor Start Version End Version
Ios Cisco 15.1(3)s4 15.1(3)s4
Ios Cisco 15.1(1)s 15.1(1)s
Ios Cisco 15.5(3)s1a 15.5(3)s1a
Ios Cisco 15.1(3)s5a 15.1(3)s5a
Ios Cisco 15.1(3)s6 15.1(3)s6
Ios Cisco 15.5(1)s2 15.5(1)s2
Ios Cisco 15.1(3)s3 15.1(3)s3
Ios Cisco 15.5(3)sn 15.5(3)sn
Ios Cisco 15.5(2)t 15.5(2)t
Ios Cisco 15.1(2)s 15.1(2)s
Ios Cisco 15.5(2)s 15.5(2)s
Ios Cisco 15.1(2)s1 15.1(2)s1
Ios Cisco 15.1(3)s2 15.1(3)s2
Ios Cisco 15.5(2)s1 15.5(2)s1
Ios Cisco 15.5(3)m 15.5(3)m
Ios Cisco 15.1(3)s 15.1(3)s
Ios Cisco 15.5(1)s4 15.5(1)s4
Ios Cisco 15.1(1)s2 15.1(1)s2
Ios Cisco 15.5(3)m1 15.5(3)m1
Ios Cisco 15.1(3)s1 15.1(3)s1
Ios Cisco 15.5(3)s1 15.5(3)s1
Ios Cisco 15.5(3)m0a 15.5(3)m0a
Ios Cisco 15.1(2)s2 15.1(2)s2
Ios Cisco 15.5(1)s1 15.5(1)s1
Ios Cisco 15.5(3)s 15.5(3)s
Ios Cisco 15.1(3)s5 15.1(3)s5
Ios Cisco 15.1(3)s0a 15.1(3)s0a
Ios Cisco 15.5(2)s3 15.5(2)s3
Ios Cisco 15.1(1)s1 15.1(1)s1
Ios Cisco 15.5(1)s 15.5(1)s
Ios Cisco 15.5(1)s3 15.5(1)s3
Ios Cisco 15.5(3)s0a 15.5(3)s0a
Ios Cisco 15.5(2)s2 15.5(2)s2

References