NTP 'ntpd' Autokey Stack Buffer Overflow Vulnerability

The 'ntpd' daemon is prone to a stack-based buffer-overflow vulnerability when it is configured to use the 'autokey' OpenSSL protocol.

Attackers can exploit this issue to execute arbitrary code in the context of the application. Failed attempts will likely crash the application, causing denial-of-service conditions.


Privacy Statement
Copyright 2010, SecurityFocus