Multiple stack-based buffer overflows in ntpd in NTP prior to 4.2.8 allow remote malicious users to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ntp ntp |