| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20060316192929.30D28EF8@lists.grok.org.uk> Date: Thu Mar 16 20:43:59 2006 From: whatstheaddress at gmail.com (Ryan Smith) Subject: -ADVISORY- % x Thu Mar 16 14:29:16 EST 2006 x % Directory Transversal in ISC NTP -ADVISORY- % x Thu Mar 16 14:29:16 EST 2006 x % Directory Transversal in ISC NTP 8=====================D~~~~~~~~~~ 8===D BACKGROUND 8=====================D~~~~~~~~~~ There has been no background. 8=====================D~~~~~~~~~~ 8===D DESCRIPTION 8=====================D~~~~~~~~~~ Remote exploitation of a directory traversal vulnerability in ISC NTP could allow attackers to overwrite or view arbitrary files with user-supplied contents. 8=====================D~~~~~~~~~~ 8===D HISTORY 8=====================D~~~~~~~~~~ 29/1/2006 8==D Vendor Notification. 16/3/2006 8==D Public Disclosure. 8=====================D~~~~~~~~~~ 8===D CVE INFORMATION 8=====================D~~~~~~~~~~ The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-478482 to this issue 8=====================D~~~~~~~~~~ APPENDIX A VENDOR INFORMATION 8=====================D~~~~~~~~~~ http://www.isc.org/index.pl?/sw/ntp/
Powered by blists - more mailing lists