An issue exists in NTPsec prior to 1.1.3. process_control() in ntp_control.c has a stack-based buffer over-read because attacker-controlled data is dereferenced by ntohl() in ntpd.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ntpsec ntpsec |