Full Disclosure mailing list archives
-advisory- $ -Thu Mar 16 13:39:46 EST 2006- $ Off-by-one in ISC NTP
From: lifesaver68 () hotmail com
Date: Thu, 16 Mar 2006 18:39:51 +0000 (GMT)
-advisory- $ -Thu Mar 16 13:39:46 EST 2006- $ Off-by-one in ISC NTP ----------- o/ å Description ----------- It is possible to make ISC NTP crash by the use of malformed input. ----------- å \o History ----------- 27-1-2006 o/ Vendor Notification. 29-2-2006 o/ Vendor Reply. 16-3-2006 o/ Public Disclosure. ----------- o/ å Vendor Response ----------- ISC NTP is presented no identified information. ----------- å \o CVE Information ----------- The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-308510 to this issue ----------- Appendix A Vendor Information ----------- http://www.isc.org/index.pl?/sw/ntp/ ----------- Appendix B References ----------- RFC 4599 ----------- Contact ----------- adnan habib lolville () spam la 1-888-565-9428 CISSP GSAE CCE GREM SSP-MPA GIPS GHTQ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- -advisory- $ -Thu Mar 16 13:39:46 EST 2006- $ Off-by-one in ISC NTP lifesaver68 (Mar 16)