Vulnerability Description
The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ntp | Ntp | 4.2.8 |
Related Weaknesses (CWE)
References
- http://support.ntp.org/bin/view/Main/NtpBug3378PatchVendor Advisory
- http://support.ntp.org/bin/view/Main/SecurityNotice#March_2017_ntp_4_2_8p10_NTP_Vendor Advisory
- http://www.securityfocus.com/bid/97058Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038123Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039427
- https://support.apple.com/HT208144
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
- http://support.ntp.org/bin/view/Main/NtpBug3378PatchVendor Advisory
- http://support.ntp.org/bin/view/Main/SecurityNotice#March_2017_ntp_4_2_8p10_NTP_Vendor Advisory
- http://www.securityfocus.com/bid/97058Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038123Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039427
- https://support.apple.com/HT208144
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpe
FAQ
What is CVE-2017-6451?
CVE-2017-6451 is a vulnerability with a CVSS score of 7.8 (HIGH). The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to ex...
How severe is CVE-2017-6451?
CVE-2017-6451 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-6451?
Check the references section above for vendor advisories and patch information. Affected products include: Ntp Ntp.