Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

[ADVISORY] ~ -Thu Mar 16 15:28:27 EST 2006- ~ Integer Overflow in ISC NTP

From: Andre Protas <aprotas () eeye com>
Date: Thu, 16 Mar 2006 20:28:32 +0000 (GMT)



[ADVISORY] ~ -Thu Mar 16 15:28:27 EST 2006- ~ Integer Overflow in ISC NTP




=======
8===D BACKGROUND
=======
This vulnerability has no identified background information on the vulnerability in question.
=======
8===D DESCRIPTION
=======
ISC NTP incorrectly parses integer data, and this can be used to execute arbitrary code.

=======
8===D VENDOR RESPONSE
=======
ISC NTP has offered no explanation.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: