Endpoint Vulnerability

Off-path Denial of Service (DoS) attack on authenticated broadcast mode

Description

An off-path attacker can send broadcast packets with bad authentication (wrong key, mismatched key, incorrect MAC, etc) to broadcast clients. It is observed that the broadcast client tears down the association with the broadcast server upon receiving just one bad packet.

Affected Products

NTP

References

CVE-2015-7979,