CVE-2015-7851 (ntp)

Leave a reply

Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use ‘\’ or ‘/’ characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files.

View Full Alert

Related Posts

  • CVE-2015-8313

    GnuTLS incorrectly validates the first byte of padding in CBC modes View Full Alert

  • CVE-2015-6960

    edx-platform before 2015-09-17 allows XSS via a team name. View Full Alert

  • CVE-2015-0565

    NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks possible. View Full Alert

Leave a Reply