CVE-2009-0159
ntp - several vulnerabilities
EPSS 20.3%
Description
Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.
How to fix CVE-2009-0159
To remediate CVE-2009-0159, upgrade the affected package to a fixed version below.
- Debian/ntp—upgrade to 1:4.2.4p6+dfsg-2 or later
- Debian/ntp—upgrade to 1:4.2.2.p4+dfsg-2etch3 or later
Is CVE-2009-0159 being exploited?
Moderate — EPSS is 20.3%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 1:4.2.4p6+dfsg-2
- from 0, < 1:4.2.2.p4+dfsg-2etch3