Denial of Service Vulnerability in NTPd via Crafted logconfig Commands

Denial of Service Vulnerability in NTPd via Crafted logconfig Commands

CVE-2015-5194 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands.

Learn more about our Web Application Penetration Testing UK.