Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0414Improper Restriction of Operations within the Bounds of a Memory Buffer in Mills Ntpd

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources
Severity
10.0CRITICALNVD
EPSS
81.2%
top 0.83%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Dave Mills NtpdDave Mills Xntp3
Timeline
PublishedJun 18
Latest updateMay 3

Description

Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDdave_mills/ntpd4.0.99k+11
NVDdave_mills/xntp36 versions+5

Patches

Patch: www.linux-mandrake.comPatch: www.securityfocus.comPatch: www.linux-mandrake.com

🔴Vulnerability Details

1
GHSA
GHSA-xj76-gxv6-j253: Buffer overflow in ntpd ntp daemon 42022-05-03

💥Exploits & PoCs

4
Exploit-DB
NTP daemon readvar - Remote Buffer Overflow (Metasploit)2010-08-25
Exploit-DB
NTPd 4.0.99j-k readvar - Remote Buffer Overflow (Metasploit)2001-04-04
Exploit-DB
NTPd - Remote Buffer Overflow2001-04-04
Metasploit
NTP Daemon readvar Buffer Overflow

📋Vendor Advisories

3
Cisco
NTP Vulnerability2002-05-08
Red Hat
ntpd security hole2001-04-04
Cisco
NTP Vulnerability

💬Community

1
Bugzilla
CVE-2001-0414 ntpd security hole2001-04-05