The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x prior to 4.3.92 allows remote malicious users to cause an out-of-bounds reference via an addpeer request with a large hmode value.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ntp ntp |
||
ntp ntp 4.2.8 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
netapp clustered data ontap - |
||
netapp data ontap - |
||
netapp oncommand balance - |
||
netapp oncommand performance manager - |
||
netapp oncommand unified manager for clustered data ontap - |
||
oracle communications user data repository 10.0.0 |
||
oracle communications user data repository 10.0.1 |
||
oracle communications user data repository 12.0.0 |
||
oracle linux 6 |
||
oracle linux 7 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server aus 7.2 |
||
redhat enterprise linux server aus 7.4 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux server eus 7.2 |
||
redhat enterprise linux server eus 7.3 |
||
redhat enterprise linux server eus 7.4 |
||
redhat enterprise linux server eus 7.5 |
||
redhat enterprise linux server eus 7.6 |
||
redhat enterprise linux server eus 7.7 |
||
redhat enterprise linux server tus 7.2 |
||
redhat enterprise linux server tus 7.3 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server tus 7.7 |
||
redhat enterprise linux workstation 6.0 |
||
freebsd freebsd 9.3 |
||
freebsd freebsd 10.1 |
||
freebsd freebsd 10.2 |
||
freebsd freebsd 10.3 |
||
siemens simatic_net_cp_443-1_opc_ua_firmware |
Vulmon