NTP : Security Vulnerabilities, CVEs, Published In 2009 (Overflow)
Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.
Max CVSS
6.8
EPSS Score
96.39%
Published
2009-05-19
Updated
2018-10-10
Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.
Max CVSS
6.8
EPSS Score
4.31%
Published
2009-04-14
Updated
2018-10-11
2 vulnerabilities found