CVE-2009-0159
published 2009-04-14CVE-2009-0159: Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code…
PriorityP347medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
13.23%
95.9th percentile
Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.
Affected
36 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | ntp | < ntp 1:4.2.4p6+dfsg-2 (bullseye) | ntp 1:4.2.4p6+dfsg-2 (bullseye) |
| ntp | ntp | <= 4.2.4p7 | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
| ntp | ntp | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8LOW
vendor_redhat6.8MEDIUM
vendor_ubuntu6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wg77-pm57-j6rv: Stack-based buffer overflow in the cookedprint function in ntpq/ntpq
ghsa_unreviewed·2022-05-03
CVE-2009-0159 [MEDIUM] CWE-119 GHSA-wg77-pm57-j6rv: Stack-based buffer overflow in the cookedprint function in ntpq/ntpq
Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.
OSV
CVE-2009-0159: Stack-based buffer overflow in the cookedprint function in ntpq/ntpq
osv·2009-04-14·CVSS 6.8
CVE-2009-0159 [MEDIUM] CVE-2009-0159: Stack-based buffer overflow in the cookedprint function in ntpq/ntpq
Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.
VMware
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
vendor_vmware·2009-11-20·CVSS 5.0
CVE-2007-2052 [MEDIUM] VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
VMSA-2009-0016: VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
a. JRE Security Update JRE update to version 1.5.0_20, which addresses multiple security issues that existed in earlier releases of JRE. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_18: CVE-2009-1093, CVE-2009-1094, CVE-2009-1095, CVE-2009-1096, CVE-2009-1097, CVE-2009-1098, CVE-2009-1099, CVE-2009-1100, CVE-2009-1101, CVE-2009-1102, CVE-2009-1103, CVE-2009-1104, CVE-2009-1105, CVE-2009-1106, and CVE-2009-1107. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_20: CVE-2009-
Ubuntu
Ntp vulnerabilities
vendor_ubuntu·2009-05-19·CVSS 6.8
CVE-2009-0159 [MEDIUM] Ntp vulnerabilities
Title: Ntp vulnerabilities
Summary: Ntp vulnerabilities
A stack-based buffer overflow was discovered in ntpq. If a user were
tricked into connecting to a malicious ntp server, a remote attacker could
cause a denial of service in ntpq, or possibly execute arbitrary code with
the privileges of the user invoking the program. (CVE-2009-0159)
Chris Ries discovered a stack-based overflow in ntp. If ntp was configured
to use autokey, a remote attacker could send a crafted packet to cause a
denial of service, or possibly execute arbitrary code. (CVE-2009-1252)
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
ntp: buffer overflow in ntpq
vendor_redhat·2009-04-09·CVSS 6.8
CVE-2009-0159 [MEDIUM] CWE-121 ntp: buffer overflow in ntpq
ntp: buffer overflow in ntpq
Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.
Debian
CVE-2009-0159: ntp - Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq i...
vendor_debian·2009·CVSS 6.8
CVE-2009-0159 [MEDIUM] CVE-2009-0159: ntp - Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq i...
Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.
Scope: local
bullseye: resolved (fixed in 1:4.2.4p6+dfsg-2)
No detection rules found.
No public exploits indexed.
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-006.txt.aschttp://bugs.pardus.org.tr/show_bug.cgi?id=9532http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.htmlhttp://marc.info/?l=bugtraq&m=136482797910018&w=2http://ntp.bkbits.net:8080/ntp-stable/?PAGE=gnupatch&REV=1.1565http://osvdb.org/53593http://rhn.redhat.com/errata/RHSA-2009-1039.htmlhttp://rhn.redhat.com/errata/RHSA-2009-1040.htmlhttp://secunia.com/advisories/34608http://secunia.com/advisories/35074http://secunia.com/advisories/35137http://secunia.com/advisories/35138http://secunia.com/advisories/35166http://secunia.com/advisories/35169http://secunia.com/advisories/35253http://secunia.com/advisories/35308http://secunia.com/advisories/35336http://secunia.com/advisories/35416http://secunia.com/advisories/35630http://secunia.com/advisories/37471http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.566238http://support.apple.com/kb/HT3549http://www.debian.org/security/2009/dsa-1801http://www.gentoo.org/security/en/glsa/glsa-200905-08.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2009:092http://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/34481http://www.securitytracker.com/id?1022033http://www.us-cert.gov/cas/techalerts/TA09-133A.htmlhttp://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2009/0999http://www.vupen.com/english/advisories/2009/1297http://www.vupen.com/english/advisories/2009/3316https://bugzilla.redhat.com/show_bug.cgi?id=490617https://exchange.xforce.ibmcloud.com/vulnerabilities/49838https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19392https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5411https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8386https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8665https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9634https://rhn.redhat.com/errata/RHSA-2009-1651.htmlhttps://support.ntp.org/bugs/show_bug.cgi?id=1144https://usn.ubuntu.com/777-1/https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01414.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-May/msg01449.htmlftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2009-006.txt.aschttp://bugs.pardus.org.tr/show_bug.cgi?id=9532http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.htmlhttp://marc.info/?l=bugtraq&m=136482797910018&w=2http://ntp.bkbits.net:8080/ntp-stable/?PAGE=gnupatch&REV=1.1565http://osvdb.org/53593http://rhn.redhat.com/errata/RHSA-2009-1039.htmlhttp://rhn.redhat.com/errata/RHSA-2009-1040.htmlhttp://secunia.com/advisories/34608http://secunia.com/advisories/35074http://secunia.com/advisories/35137http://secunia.com/advisories/35138http://secunia.com/advisories/35166http://secunia.com/advisories/35169http://secunia.com/advisories/35253http://secunia.com/advisories/35308http://secunia.com/advisories/35336http://secunia.com/advisories/35416http://secunia.com/advisories/35630http://secunia.com/advisories/37471http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.566238http://support.apple.com/kb/HT3549http://www.debian.org/security/2009/dsa-1801http://www.gentoo.org/security/en/glsa/glsa-200905-08.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2009:092http://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/34481http://www.securitytracker.com/id?1022033http://www.us-cert.gov/cas/techalerts/TA09-133A.htmlhttp://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2009/0999http://www.vupen.com/english/advisories/2009/1297http://www.vupen.com/english/advisories/2009/3316https://bugzilla.redhat.com/show_bug.cgi?id=490617https://exchange.xforce.ibmcloud.com/vulnerabilities/49838https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19392https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5411https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8386https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8665https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9634https://rhn.redhat.com/errata/RHSA-2009-1651.htmlhttps://support.ntp.org/bugs/show_bug.cgi?id=1144https://usn.ubuntu.com/777-1/https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01414.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-May/msg01449.html
2009-04-14
Published