Showing 1 - 7 of 7

CVE-2018-12327

Status Candidate

Overview

Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source.

Related Files

Red Hat Security Advisory 2020-1470-01: Posted Apr 14, 2020; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2020-1470-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | 7afeadbc4c99701e9484d75f0545e54d6a95cf198aa6be96a12760f702fb5356; Download | Favorite | View

Red Hat Security Advisory 2019-2077-01: Posted Aug 6, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2077-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | f50f1f5ef40bba204253c03fb28c0b06ee664254422e7064745120b523aadda9; Download | Favorite | View

Gentoo Linux Security Advisory 201903-15: Posted Mar 19, 2019; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201903-15 - Multiple vulnerabilities have been found in NTP, the worst of which could result in the remote execution of arbitrary code. Versions less than 4.2.8_p13 are affected.; tags | advisory, remote, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2018-12327, CVE-2019-8936; SHA-256 | eeba10aa41c8236e0d57e96ec364f7f0bda2a9f0a77b6dde38cd6a4b9fb93411; Download | Favorite | View

Red Hat Security Advisory 2018-3854-01: Posted Dec 19, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3854-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | ecccca8405ce1ae112c4c9ef8699c52acaa7349eacd9444e706b1cc606052122; Download | Favorite | View

Red Hat Security Advisory 2018-3853-01: Posted Dec 19, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3853-01 - The Network Time Protocol is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service. Issues addressed include buffer overflow, code execution, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, vulnerability, code execution, protocol; systems | linux, redhat; advisories | CVE-2018-12327; SHA-256 | 7d67828682276999308ce93378cd3811edc0d9b3565bdbef85add8ef9bf3f2bf; Download | Favorite | View

Slackware Security Advisory - ntp Updates: Posted Aug 18, 2018; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.; tags | advisory; systems | linux, slackware; advisories | CVE-2016-1549, CVE-2018-12327; SHA-256 | 3313285aba9c7c1e55e6392b2e04553b10a01c61f50d11a6d56e7942d4ab8d54; Download | Favorite | View

ntp 4.2.8p11 Local Buffer Overflow: Posted Jun 21, 2018; Authored by Fakhri Zulkifli; ntp version 4.2.8p11 local buffer overflow proof of concept exploit.; tags | exploit, overflow, local, proof of concept; advisories | CVE-2018-12327; SHA-256 | 58d5c2c09ae2ac283406b95eb42578ca0e011963836a1df819f9e248cdc7984b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 294 files
Ubuntu 63 files
Debian 34 files
Gentoo 32 files
LiquidWorm 10 files
malvuln 7 files
nu11secur1ty 7 files
Ahmet Umit Bayram 4 files
Adam Gowdiak 4 files
gabe_k 3 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,038)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,499)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,583)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,746)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,492)
UNIX (9,397)
UnixWare (187)
Windows (6,657)
Other

CVE-2018-12327

Overview

Related Files

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems