The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.

References

packetstormsecurity.com/files/146631/Slackware-Security-Advisory-ntp-Updates.html

support.ntp.org/bin/view/Main/NtpBug3412

www.securityfocus.com/archive/1/541824/100/0/threaded

www.securityfocus.com/bid/103191

security.FreeBSD.org/advisories/FreeBSD-SA-18:02.ntp.asc

security.gentoo.org/glsa/201805-12

security.netapp.com/advisory/ntap-20180626-0001/

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03962en_us

usn.ubuntu.com/3707-1/

www.exploit-db.com/exploits/45846/

www.synology.com/support/security/Synology_SA_18_13

ubuntucve 2

f5 1

exploitpack 1

cve 1

packetstorm 1

zdt 1

redhatcve 1

prion 1

nvd 1

debiancve 1

exploitdb 1

osv 2

openvas 14

ubuntu 3

nessus 18

ibm 5

cloudfoundry 1

gentoo 1

slackware 1

freebsd_advisory 1

archlinux 1

symantec 1

mageia 1

fedora 3

freebsd 1

aix 1

amazon 2

photon 2

ubuntucve

CVE-2018-7182

2018-03-06 00:00:00

CVE-2019-8936

2019-05-15 00:00:00

K38742515 : NTP vulnerability CVE-2018-7182

2018-03-12 00:00:00

exploitpack

ntpd 4.2.8p10 - Out-of-Bounds Read (PoC)

2018-11-14 00:00:00

cve

CVE-2018-7182

2018-03-06 20:29:01

packetstorm

ntpd 4.2.8p10 Out-Of-Bounds Read

2018-11-15 00:00:00

zdt

ntpd 4.2.8p10 - Out-of-Bounds Read Exploit

2018-11-14 00:00:00

redhatcve

CVE-2018-7182

2018-02-28 19:48:43

prion

Out-of-bounds

2018-03-06 20:29:00

nvd

CVE-2018-7182

2018-03-06 20:29:01

debiancve

CVE-2018-7182

2018-03-06 20:29:01

exploitdb

ntpd 4.2.8p10 - Out-of-Bounds Read (PoC)

2018-11-14 00:00:00

osv

ntp vulnerability

2020-10-01 21:04:43

ntp vulnerability

2021-04-20 13:38:45

openvas

Ubuntu: Security Advisory (USN-4563-1)

2020-10-02 00:00:00

Ubuntu: Security Advisory (USN-4563-2)

2021-04-21 00:00:00

NTP.org 'ntpd' 'ctl_getitem()' And 'decodearr()' Multiple Vulnerabilities

2018-03-07 00:00:00

ubuntu

NTP vulnerability

2020-10-01 00:00:00

NTP vulnerability

2021-04-20 00:00:00

NTP vulnerabilities

2018-07-09 00:00:00

nessus

Symantec Content Analysis < 2.3.5.1 affected by Multiple Vulnerabilities (SYMSA1451)

2019-05-30 00:00:00

Photon OS 1.0: Ntp PHSA-2018-1.0-0167

2019-02-07 00:00:00

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : NTP vulnerabilities (USN-3707-1)

2018-07-10 00:00:00

ibm

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in NTP

2023-12-07 22:31:02

Security Bulletin: Vulnerabilities in ntp affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems

2023-12-07 22:30:58

Security Bulletin: Vulnerabilities in NTP affect QLogic 8Gb Intelligent Pass-thru Module and SAN Switch Module for IBM BladeCenter and IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru

2023-12-07 22:31:02

cloudfoundry

USN-3707-1: NTP vulnerabilities | Cloud Foundry

2018-07-19 00:00:00

gentoo

NTP: Multiple vulnerabilities

2018-05-26 00:00:00

slackware

[slackware-security] ntp

2018-03-01 23:49:07

freebsd_advisory

FreeBSD-SA-18:02.ntp

2018-03-07 00:00:00

archlinux

[ASA-201803-11] ntp: multiple issues

2018-03-16 00:00:00

symantec

SA165: NTP Vulnerabilities February 2018

2018-04-26 08:00:00

mageia

Updated ntp packages fix security vulnerabilities

2018-04-07 01:54:47

fedora

[SECURITY] Fedora 26 Update: ntp-4.2.8p11-1.fc26

2018-03-27 19:30:28

[SECURITY] Fedora 27 Update: ntp-4.2.8p11-1.fc27

2018-03-27 20:16:30

[SECURITY] Fedora 27 Update: ntp-4.2.8p12-1.fc27

2018-09-26 20:17:54

freebsd

ntp -- multiple vulnerabilities

2018-02-27 00:00:00

aix

Vulnerabilities in NTP affect AIX,Vulnerabilities in NTP affect VIOS

2018-08-14 14:48:57

amazon

Medium: ntp

2018-05-10 17:01:00

Medium: ntp

2018-05-10 17:11:00

photon

Critical Photon OS Security Update - PHSA-2018-0167

2018-07-27 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0167

2018-07-27 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7.2 High

AI Score

Confidence

High

0.112 Low

EPSS

Percentile

95.2%

JSON

Related for CVELIST:CVE-2018-7182