Eygene Ryabinkin
2009-May-21 15:27 UTC
FYI: ntpd, CVE-2009-1252, remote code execution with enabled Autokey authentication
For those who are running Autokey with stock NTPD:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1252
http://www.freebsd.org/cgi/query-pr.cgi?pr=134787
For users of net/ntp:
http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/134755
http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/134756
--
Eygene
_ ___ _.--. #
\`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard
/ ' ` , __.--' # to read the on-line manual
)/' _/ \ `-_, / # while single-stepping the kernel.
`-'" `"\_ ,_.-;_.-\_ ', fsc/as #
_.-'_./ {_.' ; / # -- FreeBSD Developers handbook
{_.-``-' {_/ #
Seemingly Similar Threads
- Autokey types a dir into open ile dialog but not recognised
- [patch] [vuxml] net/wireshark: fix DoS in SMTP dissector
- Re: Autokey types a dir into open ile dialog but not recognised
- freebsd-security Digest, Vol 201, Issue 2
- OpenBSD IPv6 remote kernel buffer overflow. FreeBSD has this too?
