CVE-2015-7703

Priority
Description
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4,
and 4.3.x before 4.3.77, when ntpd is configured to allow remote
configuration, allows remote attackers with an IP address that is allowed
to send configuration requests, and with knowledge of the remote
configuration password to write to arbitrary files via the :config command.
Notes
 mdeslaur> dupe of CVE-2015-5196
Assigned-to
mdeslaur
More Information

Updated: 2019-03-19 12:23:28 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)