Back to search
CVE-2014-3309
Published: Jul 9, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The NTP implementation in Cisco IOS and IOS XE does not properly support use of the access-group command for a "deny all" configuration, which allows remote attackers to bypass intended restrictions on time synchronization via a standard query, aka Bug ID CSCuj66318.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1030549
vdb-entry
x_refsource_SECTRACK
20140708 Cisco IOS Software and Cisco IOS XE Software NTP Access Group Vulnerability
vendor-advisory
x_refsource_CISCO
68463
vdb-entry
x_refsource_BID
ciscoios-cve20143309-info-disc(94420)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now