CVE

Id
85253  
CVE No.
CVE-2015-7976  
Status
Candidate  
Description
The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a crafted filename.  
Phase
Assigned (20151023)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
752059 85253 CVE-2015-7976 CONFIRM:http://support.ntp.org/bin/view/Main/NtpBug2938  View
752060 85253 CVE-2015-7976 CONFIRM:https://bto.bluecoat.com/security-advisory/sa113  View
752061 85253 CVE-2015-7976 CISCO:20160120 Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products - January 2016  View
752062 85253 CVE-2015-7976 URL:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-ntpd  View
752063 85253 CVE-2015-7976 GENTOO:GLSA-201607-15  View
752064 85253 CVE-2015-7976 URL:https://security.gentoo.org/glsa/201607-15  View
752065 85253 CVE-2015-7976 SUSE:SUSE-SU-2016:1175  View
752066 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00059.html  View
752067 85253 CVE-2015-7976 SUSE:SUSE-SU-2016:1177  View
752068 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00060.html  View
752069 85253 CVE-2015-7976 SUSE:SUSE-SU-2016:1247  View
752070 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00020.html  View
752071 85253 CVE-2015-7976 SUSE:SUSE-SU-2016:1311  View
752072 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.html  View
752073 85253 CVE-2015-7976 SUSE:SUSE-SU-2016:1912  View
752074 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.html  View
752075 85253 CVE-2015-7976 SUSE:SUSE-SU-2016:2094  View
752076 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.html  View
752077 85253 CVE-2015-7976 SUSE:openSUSE-SU-2016:1292  View
752078 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00038.html  View
752079 85253 CVE-2015-7976 SUSE:openSUSE-SU-2016:1423  View
752080 85253 CVE-2015-7976 URL:http://lists.opensuse.org/opensuse-updates/2016-05/msg00114.html  View
752081 85253 CVE-2015-7976 UBUNTU:USN-3096-1  View
752082 85253 CVE-2015-7976 URL:http://www.ubuntu.com/usn/USN-3096-1  View
752083 85253 CVE-2015-7976 CERT-VN:VU#718152  View
752084 85253 CVE-2015-7976 URL:https://www.kb.cert.org/vuls/id/718152  View
752085 85253 CVE-2015-7976 SECTRACK:1034782  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
10370 JVNDB-2015-005690 SAP 3D Visual Enterprise Viewer におけるバッファオーバーフローの脆弱性 SAP 3D Visual Enterprise Viewer (VEV) には、バッファオーバーフローの脆弱性が存在します。 CVE-2015-8028 85253 6.8 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005690.html  View