CVE-2015-7851: Path Traversal
Published Jan 28, 2020
·Updated
Directory traversal vulnerability in the saveconfig function in ntpd in ntpcontrol.c in NTP before 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files.
Affected Software
18 affected components
NTP ntp>=4.2.0<4.2.8
NTP ntp>=4.3.0<4.3.77
NTP ntp=4.2.8-p1
NTP ntp=4.2.8-p1-beta1
NTP ntp=4.2.8-p1-beta2
NTP ntp=4.2.8-p1-beta3
NTP ntp=4.2.8-p1-beta4
NTP ntp=4.2.8-p1-beta5
NTP ntp=4.2.8-p1-rc1
NTP ntp=4.2.8-p1-rc2
NTP ntp=4.2.8-p2
NTP ntp=4.2.8-p2-rc1
NTP ntp=4.2.8-p2-rc2
NTP ntp=4.2.8-p2-rc3
NTP ntp=4.2.8-p3
NTP ntp=4.2.8-p3-rc1
NTP ntp=4.2.8-p3-rc2
NTP ntp=4.2.8-p3-rc3
Event History
Jan 28, 2020
CVE Published
via MITRE·04:35 PM
Data Sourced
via MITRE·04:35 PM
Description
Frequently Asked Questions
1
What is CVE-2015-7851?
CVE-2015-7851 is a directory traversal vulnerability in the save_config function in ntpd in NTP before 4.2.8p4.
2
How does CVE-2015-7851 affect NTP?
CVE-2015-7851 allows remote authenticated users to overwrite arbitrary files on systems that do not use '\' or '/' characters for directory separation such as OpenVMS.
3
Which versions of NTP are affected by CVE-2015-7851?
NTP versions before 4.2.8p4 are affected by CVE-2015-7851.
4
What is the severity of CVE-2015-7851?
CVE-2015-7851 has a severity rating of 6.5 (medium).
5
How can I fix CVE-2015-7851?
To fix CVE-2015-7851, you should upgrade to NTP version 4.2.8p4 or later.