FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ntp -- stack-based buffer overflow

Affected packages
ntp < 4.2.4p7

Details

VuXML ID 4175c811-f690-4898-87c5-755b3cf1bac6
Discovery 2009-05-06
Entry 2009-05-20

US-CERT reports:

ntpd contains a stack buffer overflow which may allow a remote unauthenticated attacker to execute arbitrary code on a vulnerable system or create a denial of service.

References

Bugtraq ID 35017
CVE Name CVE-2009-0159
CVE Name CVE-2009-1252
URL http://www.kb.cert.org/vuls/id/853097