NTP Implementation in Cisco IOS and IOS XE Allows Bypass of Access Group Restrictions (Bug ID CSCuj66318)

NTP Implementation in Cisco IOS and IOS XE Allows Bypass of Access Group Restrictions (Bug ID CSCuj66318)

CVE-2014-3309 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The NTP implementation in Cisco IOS and IOS XE does not properly support use of the access-group command for a "deny all" configuration, which allows remote attackers to bypass intended restrictions on time synchronization via a standard query, aka Bug ID CSCuj66318.

Learn more about our Cis Benchmark Audit For Apple Ios.