An issue was discovered in NTPsec before 1.1.3. process_control() in ntp_control.c has a stack-based buffer over-read because attacker-controlled data is dereferenced by ntohl() in ntpd.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HNtpsec
APPNtpsec< 1.1.3
Powiązane podatności
An issue was discovered in NTPsec before 1.1.3. Because of a bug in ctl_getitem, there is a stack-based buffer...
ntpd will crash if the server is not NTS-enabled (no certificate) and it receives an NTS-enabled client reques...
ntpkeygen can generate keys that ntpd fails to parse. NTPsec 1.2.0 allows ntpkeygen to generate keys with '#' ...
An issue was discovered in NTPsec before 1.1.3. An authenticated attacker can write one byte out of bounds in ...
An issue was discovered in NTPsec before 1.1.3. An authenticated attacker can cause a NULL pointer dereference...