Showing 1 - 7 of 7

CVE-2018-12327

Status Candidate

Overview

Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source.

Related Files

Red Hat Security Advisory 2020-1470-01: Posted Apr 14, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1470-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | 7afeadbc4c99701e9484d75f0545e54d6a95cf198aa6be96a12760f702fb5356; Download | Favorite | View

Red Hat Security Advisory 2019-2077-01: Posted Aug 6, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2077-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | f50f1f5ef40bba204253c03fb28c0b06ee664254422e7064745120b523aadda9; Download | Favorite | View

Gentoo Linux Security Advisory 201903-15: Posted Mar 19, 2019; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201903-15 - Multiple vulnerabilities have been found in NTP, the worst of which could result in the remote execution of arbitrary code. Versions less than 4.2.8_p13 are affected.; tags | advisory, remote, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2018-12327, CVE-2019-8936; SHA-256 | eeba10aa41c8236e0d57e96ec364f7f0bda2a9f0a77b6dde38cd6a4b9fb93411; Download | Favorite | View

Red Hat Security Advisory 2018-3854-01: Posted Dec 19, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3854-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | ecccca8405ce1ae112c4c9ef8699c52acaa7349eacd9444e706b1cc606052122; Download | Favorite | View

Red Hat Security Advisory 2018-3853-01: Posted Dec 19, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3853-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | 7d67828682276999308ce93378cd3811edc0d9b3565bdbef85add8ef9bf3f2bf; Download | Favorite | View

Slackware Security Advisory - ntp Updates: Posted Aug 18, 2018; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.; tags | advisory; systems | linux, slackware; advisories | CVE-2016-1549, CVE-2018-12327; SHA-256 | 3313285aba9c7c1e55e6392b2e04553b10a01c61f50d11a6d56e7942d4ab8d54; Download | Favorite | View

ntp 4.2.8p11 Local Buffer Overflow: Posted Jun 21, 2018; Authored by Fakhri Zulkifli; ntp version 4.2.8p11 local buffer overflow proof of concept exploit.; tags | exploit, overflow, local, proof of concept; advisories | CVE-2018-12327; SHA-256 | 58d5c2c09ae2ac283406b95eb42578ca0e011963836a1df819f9e248cdc7984b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
Ubuntu 55 files
LiquidWorm 20 files
Debian 18 files
Apple 9 files
indoushka 5 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

CVE-2018-12327

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems