CVE DATABASE / CVE-2013-5211
CVE-2013-5211
CVSS 5 · MEDIUM
Summary
The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
CVSS 2.0 breakdown
| Base score | 5 (MEDIUM) |
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Confidentiality | NONE |
| Integrity | NONE |
| Availability | PARTIAL |
Weakness type (CWE)
Affected products
Opensuse opensuseNtp ntpOracle linux
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://aix.software.ibm.com/aix/efixes/security/ntp_advisory.asc
- http://bugs.ntp.org/show_bug.cgi?id=1532
- http://ics-cert.us-cert.gov/advisories/ICSA-14-051-04
- http://lists.ntp.org/pipermail/pool/2011-December/005616.html
- http://lists.opensuse.org/opensuse-updates/2014-09/msg00031.html
- http://marc.info/?l=bugtraq&m=138971294629419&w=2
- http://marc.info/?l=bugtraq&m=144182594518755&w=2
- http://openwall.com/lists/oss-security/2013/12/30/6
- http://openwall.com/lists/oss-security/2013/12/30/7
- http://secunia.com/advisories/59288
- http://secunia.com/advisories/59726
- http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095861
- http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095892
- http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-dev/ntp-dev-4.2.7p26.tar.gz
- http://www.kb.cert.org/vuls/id/348126
Data: NIST NVD. NVD last modified 2026-04-29. Always verify against the vendor advisory before acting.