Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Add modules for more NTP amplification attacks -- R7-2014-12 #3696
As described in:
The changes here can be summarized as:
In general, any system that is vulnerable to CVE-2013-5211 (MON_GETLIST_1) is likely also vulnerable to all of these, however to the best of my knowledge only NTP.org variants are actually vulnerable. I have tested this against NTP versions as old as 4.2.2 and as new as 4.2.7p465 released 08/23/2014, and in all instances I tested properly secured systems (disable querying, disable mode 7) as well as improperly secured systems.