Cisco has identified six new vulnerabilities in the Network Time Protocol (NTP) which could allow cyber-criminals to craft DDoS attacks or prevent the correct time being set.
The Talos team explained in a blog post that it was responsibly disclosing the bugs after having coordinated fixes with the relevant bodies. It urged administrators to apply the patches or upgrade NTP daemon (ntpd) installations as soon as possible.
Its ongoing efforts are part of the Linux Foundation Core Infrastructure Initiative (CII), which aims to fortify the hugely popular open source software against exploitation, and have already resulted in the discovery of several NTP bugs.
The NTP daemon is a key time service ensuring that digital clocks in systems are synchronized to a common standard.
Read more Cisco Spots New NTP Bugs
The Talos team explained in a blog post that it was responsibly disclosing the bugs after having coordinated fixes with the relevant bodies. It urged administrators to apply the patches or upgrade NTP daemon (ntpd) installations as soon as possible.
Its ongoing efforts are part of the Linux Foundation Core Infrastructure Initiative (CII), which aims to fortify the hugely popular open source software against exploitation, and have already resulted in the discovery of several NTP bugs.
The NTP daemon is a key time service ensuring that digital clocks in systems are synchronized to a common standard.
Read more Cisco Spots New NTP Bugs
