NTP Implementation in Cisco IOS and IOS XE Allows Bypass of Access Group Restrictions (Bug ID CSCuj66318)
CVE-2014-3309 · MEDIUM Severity
AV:N/AC:L/AU:N/C:P/I:N/A:N
The NTP implementation in Cisco IOS and IOS XE does not properly support use of the access-group command for a "deny all" configuration, which allows remote attackers to bypass intended restrictions on time synchronization via a standard query, aka Bug ID CSCuj66318.
Learn more about our Cis Benchmark Audit For Apple Ios.