Lucene search

K
f5F5F5:K21230183
HistoryFeb 22, 2016 - 12:00 a.m.

K21230183 : NTP vulnerability CVE-2015-7976

2016-02-2200:00:00
my.f5.com
20

AI Score

5.7

Confidence

High

EPSS

0.004

Percentile

73.5%

Security Advisory Description

The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a crafted filename. (CVE-2015-7976)
Impact
A remote user who uses the ntpq saveconfig command may exploit this flaw to create a file name with special characters when querying the NTP server.