Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ntpd | Dave_mills | * | 4.0.99k (including) |
| Ntpd | Dave_mills | 4.0.99 (including) | 4.0.99 (including) |
| Ntpd | Dave_mills | 4.0.99a (including) | 4.0.99a (including) |
| Ntpd | Dave_mills | 4.0.99b (including) | 4.0.99b (including) |
| Ntpd | Dave_mills | 4.0.99c (including) | 4.0.99c (including) |
| Ntpd | Dave_mills | 4.0.99d (including) | 4.0.99d (including) |
| Ntpd | Dave_mills | 4.0.99e (including) | 4.0.99e (including) |
| Ntpd | Dave_mills | 4.0.99f (including) | 4.0.99f (including) |
| Ntpd | Dave_mills | 4.0.99g (including) | 4.0.99g (including) |
| Ntpd | Dave_mills | 4.0.99h (including) | 4.0.99h (including) |
| Ntpd | Dave_mills | 4.0.99i (including) | 4.0.99i (including) |
| Ntpd | Dave_mills | 4.0.99j (including) | 4.0.99j (including) |
| Xntp3 | Dave_mills | 5.93 (including) | 5.93 (including) |
| Xntp3 | Dave_mills | 5.93a (including) | 5.93a (including) |
| Xntp3 | Dave_mills | 5.93b (including) | 5.93b (including) |
| Xntp3 | Dave_mills | 5.93c (including) | 5.93c (including) |
| Xntp3 | Dave_mills | 5.93d (including) | 5.93d (including) |
| Xntp3 | Dave_mills | 5.93e (including) | 5.93e (including) |
| Red Hat Linux 5.2 | RedHat | * | |
| Red Hat Linux 6.2 | RedHat | * | |
| Red Hat Linux 7.0 | RedHat | * |