CVE-2017-6460Improper Restriction of Operations within the Bounds of a Memory Buffer in NTP

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-121Stack-based Buffer Overflow11 documents10 sources
Severity
8.8HIGHNVD
OSV5.9
EPSS
0.9%
top 24.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
NTPPaloalto Pan-os
Timeline
PublishedMar 27
Latest updateMay 17

Description

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

Debianntp/ntp< 1:4.2.8p10+dfsg-1
Ubuntuntp/ntp< 1:4.2.6.p5+dfsg-3ubuntu2.14.04.11+1
NVDntp/ntp95 versions+94
Palo Altopaloalto/pan-os

Patches

Patch: support.ntp.orgPatch: support.ntp.org

🔴Vulnerability Details

4
GHSA
GHSA-8c4c-pjc2-qr4r: Stack-based buffer overflow in the reslist function in ntpq in NTP before 42022-05-17
OSV
ntp vulnerabilities2017-07-05
OSV
CVE-2017-6460: Stack-based buffer overflow in the reslist function in ntpq in NTP before 42017-03-27
CVEList
CVE-2017-6460: Stack-based buffer overflow in the reslist function in ntpq in NTP before 42017-03-27

📋Vendor Advisories

5
Apple
CVE-2017-6460: macOS High Sierra 10.132017-09-25
Palo Alto
NTP Vulnerability2017-07-27
Ubuntu
NTP vulnerabilities2017-07-05
Red Hat
ntp: Buffer Overflow in ntpq when fetching reslist from a malicious ntpd2017-03-21
Debian
CVE-2017-6460: ntp - Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p...2017

💬Community

1
Bugzilla
CVE-2017-6460 ntp: Buffer Overflow in ntpq when fetching reslist from a malicious ntpd2017-03-20
CVE-2017-6460 — NTP vulnerability | cvebase