Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2009-1252

Опубликовано: 18 мая 2009
Источник: redhat
CVSS2: 6.8

Описание

Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-121
https://bugzilla.redhat.com/show_bug.cgi?id=499694ntp: remote arbitrary code execution vulnerability if autokeys is enabled

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2009-1252

ubuntu
около 16 лет назад

Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.

nvd логотип

CVE-2009-1252

nvd
около 16 лет назад

Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.

debian логотип

CVE-2009-1252

debian
около 16 лет назад

Stack-based buffer overflow in the crypto_recv function in ntp_crypto. ...

github логотип

GHSA-x2p2-g54c-2jqg

github
около 3 лет назад

Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.

oracle-oval логотип

ELSA-2009-1039

oracle-oval
около 16 лет назад

ELSA-2009-1039: ntp security update (IMPORTANT)

6.8 Medium

CVSS2