Intrusion Prevention

NTPsec.ntpd.write_variables.DoS

Description

This indicates an attack attempt to exploit a Denial of Service Vulnerability in NTPsec ntpd.
A remote user can exploit this vulnerability by sending a crafted packet with a valid authentication key to the target server. Successful exploitation could lead to the application crash and denial of service condition.

Affected Products

NTPsec ntpd prior to 1.1.3

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Refer to the vendor's advisory for updates:
https://github.com/ntpsec/ntpsec/blob/NTPsec_1_1_3/NEWS

CVE References

CVE-2019-6445