Eygene Ryabinkin
2009-May-21 15:27 UTC
FYI: ntpd, CVE-2009-1252, remote code execution with enabled Autokey authentication
For those who are running Autokey with stock NTPD: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1252 http://www.freebsd.org/cgi/query-pr.cgi?pr=134787 For users of net/ntp: http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/134755 http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/134756 -- Eygene _ ___ _.--. # \`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard / ' ` , __.--' # to read the on-line manual )/' _/ \ `-_, / # while single-stepping the kernel. `-'" `"\_ ,_.-;_.-\_ ', fsc/as # _.-'_./ {_.' ; / # -- FreeBSD Developers handbook {_.-``-' {_/ #
Apparently Analagous Threads
- Autokey types a dir into open ile dialog but not recognised
- [patch] [vuxml] net/wireshark: fix DoS in SMTP dissector
- Re: Autokey types a dir into open ile dialog but not recognised
- freebsd-security Digest, Vol 201, Issue 2
- OpenBSD IPv6 remote kernel buffer overflow. FreeBSD has this too?