Dave Mills: >> Ntpd Security Vulnerabilities
The xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option and using a string to specify the group, uses the group ID of the user instead of the group, which causes xntpd to run with different privileges than intended.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-09-02
Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument.
CVSS Score
10.0
EPSS Score
0.877
Published
2001-06-18