2 matches found
CVE-2005-2496
CVE-2005-2496 affects the ntp (ntpd) daemon when run with the -u option and a group name string; it causes ntpd to use the user’s group ID instead of the specified group, leading to privilege differences. Affected product is ntp/ntpd prior to the patched releases (e.g., ntp updates cited in RHSA-...
CVE-2001-0414
CVE-2001-0414 is a hardware-independent NTP daemon (ntpd/xntpd) vulnerability. The OpenVAS/Nessus data consistently describe a buffer overflow in ntpd 4.0.99k and earlier triggered by a long readvar argument, leading to remote denial of service and potential arbitrary code execution. Affected com...