Vulnerability of the mstolfp() function (libntp/mstolfp.c) in the ntpq monitoring program, which implements a time synchronization protocol. This vulnerability allows a perpetrator to execute arbitrary code.

The vulnerability of the mstolfp function libntp/mstolfp.c in the ntpq monitoring program, which implements the NTP time synchronization protocol, is related to writing beyond the buffer boundaries in memory during the copying of the final number. Exploiting this vulnerability could allow a remot...

PT-2023-2537 · Ntp +5 · Ntp +5

Name of the Vulnerable Software and Affected Versions: NTP version 4.2.8p15 Description: The issue is related to an out-of-bounds write in the mstolfp function in libntp/mstolfp.c. This can be exploited by sending a specially-crafted request to cause a denial of service. The vulnerability may all...