CVE-2001-0414

Dave Mills Ntpd < 4.0.99k - Buffer Overflow

Title source: rule

Description

Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotelinux
https://www.exploit-db.com/exploits/16285
exploitdb WORKING POC VERIFIED
by patrick · rubyremotelinux
https://www.exploit-db.com/exploits/9940
metasploit WORKING POC GOOD
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/ntp/ntp_overflow.rb
exploitdb WORKING POC VERIFIED
by babcia padlina ltd · cremotelinux
https://www.exploit-db.com/exploits/20727

References (24)

... and 4 more

Scores

EPSS 0.8116
EPSS Percentile 99.1%

Classification

Status draft

Affected Products (18)

dave_mills/ntpd < 4.0.99k
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/ntpd
dave_mills/xntp3
dave_mills/xntp3
dave_mills/xntp3
... and 3 more

Timeline

Published Jun 18, 2001
Tracked Since Feb 18, 2026