cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
15996
Views
0
Helpful
3
Replies
pankaj29in
Beginner

Network Time Protocol (NTP) Mode 6 Scanner Vulnerability on Cisco Devices

Hi All,

Recently I came across this vulnerability on Cisco network switches of "Network Time Protocol (NTP) Mode 6 Scanner" which in description had "The remote NTP server responds to mode 6 queries. Devices that respond to these queries have the potential to be used in NTP amplification
attacks. An unauthenticated, remote attacker could potentially exploit this, via a specially crafted mode 6 query, to cause a reflected
denial of service condition" this statement.

After checking this error online I realized IOS of the switches needs to be upgraded to 15.2 or greater. below that all will have this Vulnerability.

So is there any workaround which can be configured to get rid of this Vulnerability to be Compliant.

Regards

Mohit

3 REPLIES 3
Philip D'Ath
Advisor

Blocking NTP using access-list?

if switches are inside LAN, so NTP is probably allready blocked by firewall from outside networks