CVE-2014-9295

Published: Dec 20, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.

Affected (1)

Products: Ntp: Ntp

Ntp

1 product

Ntp

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ntp Ntp	Up to 4.2.7

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (56)

http://advisories.mageia.org/MGASA-2014-0541.html

Source: cve@mitre.org

http://bk1.ntp.org/ntp-dev/?PAGE=patch&REV=548acc4dN1TbM1tRJrbPcA4yc1aTdA

Source: cve@mitre.org

Exploit

http://bk1.ntp.org/ntp-dev/?PAGE=patch&REV=548acdf3tUSFizXcv_X4b77Jt_Y-cg

Source: cve@mitre.org

Exploit

http://bk1.ntp.org/ntp-dev/?PAGE=patch&REV=548acf55dxKfhb6MuYQwzu8eDlS97g

Source: cve@mitre.org

Exploit

http://bugs.ntp.org/show_bug.cgi?id=2667

Source: cve@mitre.org

http://bugs.ntp.org/show_bug.cgi?id=2668

Source: cve@mitre.org

http://bugs.ntp.org/show_bug.cgi?id=2669

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00020.html

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=142469153211996&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=142590659431171&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=142853370924302&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=144182594518755&w=2

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2014-2025.html

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2015-0104.html

Source: cve@mitre.org

http://secunia.com/advisories/62209

Source: cve@mitre.org

http://support.ntp.org/bin/view/Main/SecurityNotice

Source: cve@mitre.org

Vendor Advisory

http://www.kb.cert.org/vuls/id/852879

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.mandriva.com/security/advisories?name=MDVSA-2015:003

Source: cve@mitre.org

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/71761

Source: cve@mitre.org

http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-417665.htm

Source: cve@mitre.org

https://bugzilla.redhat.com/show_bug.cgi?id=1176037

Source: cve@mitre.org

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232

Source: cve@mitre.org

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783

Source: cve@mitre.org

https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes

Source: cve@mitre.org

https://kc.mcafee.com/corporate/index?page=content&id=SB10103

Source: cve@mitre.org

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd

Source: cve@mitre.org

https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8

Source: cve@mitre.org

http://advisories.mageia.org/MGASA-2014-0541.html