CVE-2018-12327

CRITICAL

NTP 4.2.8p11 - Stack-based Buffer Overflow via IPv4/IPv6 Command-line Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-12327. PoCs published by Fakhri Zulkifli.

AI-analyzed exploit summary This exploit demonstrates a stack-based buffer overflow in ntpq and ntpdc (NTP 4.2.8p11 and earlier) via a long string argument for IPv4/IPv6 command-line parameters, leading to potential code execution or privilege escalation.

Description

Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source.

Exploits (1)

exploitdb WORKING POC

by Fakhri Zulkifli · textdoslinux

https://www.exploit-db.com/exploits/44909

View Code ZIP pw:eip

This exploit demonstrates a stack-based buffer overflow in ntpq and ntpdc (NTP 4.2.8p11 and earlier) via a long string argument for IPv4/IPv6 command-line parameters, leading to potential code execution or privilege escalation.

Classification

Working Poc 90%

Attack Type

Rce | Lpe

Complexity

Trivial

Reliability

Reliable

Target: NTP ntpq and ntpdc 4.2.8p11 and earlier

No auth needed

Prerequisites: Local access to the target system · NTP ntpq or ntpdc installed

MITRE ATT&CK