Re: [SECURITY] [DSA 045-1] ntp remote root exploit fixed

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 045-1] ntp remote root exploit fixed
From: JonesMB <jonesmb@arthem.com>
Date: Thu, 05 Apr 2001 12:12:17 -0500
Message-id: <3.0.6.32.20010405121217.00c8d100@arthem.com>
In-reply-to: <20010405164810.D8923@finlandia.infodrom.north.de>

I guess we should expect a whole lot of attempts to connect to the ports
used by NTP once the script kiddies figure this one out.

I probably average about 20 connect attempts to ports 53 and 111 every day.

jmb

>Package: ntp
>Vulnerability: remote root exploit
>Debian-specific: no
>
>Przemyslaw Frasunek <venglin@FREEBSD.LUBLIN.PL> reported that ntp
>daemons such as that released with Debian GNU/Linux are vulnerable to a
>buffer overflow that can lead to a remote root exploit. This has been
>corrected for Debian 2.2 (potato) in ntp version 4.0.99g-2potato1.
>
>We recommend you upgrade your ntp package immediately.
>
>wget url
>	will fetch the file for you
>dpkg -i file.deb
>        will install the referenced file.

--------
The Arthem Group
- Your number one source for web site design and hosting services
jonesmb@arthem.com
http://www.arthem.com

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA 045-1] ntp remote root exploit fixed
  - From: Philippe BARNETCHE <barnetch@agisphere.com>

Prev by Date: Unidentified subject!
Next by Date: Re: [SECURITY] [DSA 045-1] ntp remote root exploit fixed
Previous by thread: Re: MD5 sums of individual files?
Next by thread: Re: [SECURITY] [DSA 045-1] ntp remote root exploit fixed
Index(es):
- Date
- Thread