Описание
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1:4.2.8p10+dfsg-5ubuntu3.3 |
| bionic | released | 1:4.2.8p10+dfsg-5ubuntu7.1 |
| cosmic | released | 1:4.2.8p11+dfsg-1ubuntu1 |
| devel | released | 1:4.2.8p11+dfsg-1ubuntu1 |
| esm-apps/bionic | released | 1:4.2.8p10+dfsg-5ubuntu7.1 |
| esm-infra-legacy/trusty | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.13 |
| esm-infra/xenial | released | 1:4.2.8p4+dfsg-3ubuntu5.9 |
| precise/esm | not-affected | 1:4.2.6.p3+dfsg-1ubuntu3.12 |
| trusty | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.13 |
| trusty/esm | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.13 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 throu ...
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
Уязвимость функции decodearr программы мониторинга ntpq реализации протокола синхронизации времени NTP, позволяющая нарушителю выполнить произвольный код
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3