NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability

Bugtraq ID:	104517
Class:	Boundary Condition Error
CVE:	CVE-2018-12327
Remote:	No
Local:	Yes
Published:	Jun 20 2018 12:00AM
Updated:	Jan 18 2019 12:00PM
Credit:	Fakhri Zulkifli
Vulnerable:	Oracle Linux 6 Oracle Linux 3.4 Oracle Linux 3.3 NTP NTP 4.2.8p11 IBM Vios 2.2.3 IBM Vios 2.2.1 4 IBM Vios 2.2 IBM Vios 2.2.4.0 IBM Vios 2.2.3.50 IBM Vios 2.2.3.4 IBM Vios 2.2.3.3 IBM Vios 2.2.3.2 IBM Vios 2.2.3.0 IBM Vios 2.2.2.6 IBM Vios 2.2.2.5 IBM Vios 2.2.2.4 IBM Vios 2.2.2.0 IBM Vios 2.2.1.9 IBM Vios 2.2.1.8 IBM Vios 2.2.1.3 IBM Vios 2.2.1.1 IBM Vios 2.2.1.0 IBM Vios 2.2.0.13 IBM Vios 2.2.0.12 IBM Vios 2.2.0.11 IBM Vios 2.2.0.10 IBM Aix 7.2 IBM AIX 7.1 IBM AIX 6.1
Not Vulnerable:	NTP NTP 4.2.8p12

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability

NTP is prone to a stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer.

Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will result in denial-of-service conditions.

NTP 4.2.8p11 is vulnerable; other versions may also be affected.

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability

The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

NTP CVE-2018-12327 Stack Buffer Overflow Vulnerability

References:

• NTP Homepage (ntp.org)
  
• ntpq and ntpdc 4.2.8p11 Local Buffer Overflow (Fakhri Zulkifli)
  
• Oracle Linux Bulletin - (Oracle)
  
• NTP Bug 3505 (NTP)
  
• Oracle VM Server for x86 Bulletin - (Oracle)
  
• Security Bulletin: Vulnerabilities in NTPv4 affect AIX (IBM)