CVE-2015-7703 (retired)

Priority
Description
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4,
and 4.3.x before 4.3.77, when ntpd is configured to allow remote
configuration, allows remote attackers with an IP address that is allowed
to send configuration requests, and with knowledge of the remote
configuration password to write to arbitrary files via the :config command.
Notes
 mdeslaur> dupe of CVE-2015-5196
Assigned-to
mdeslaur
More Information

Updated: 2019-09-19 15:55:44 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)