Red Hat Bugzilla – Bug 1274260
CVE-2015-7851 ntp: saveconfig directory traversal vulnerability
Last modified: 2015-10-23 04:21:26 EDT
The following flaw was found in ntpd:
A potential path traversal vulnerability exists in the config file saving of ntpd on VMS. A specially crafted path could cause a path traversal potentially resulting in files being overwritten. An attacker could provide a malicious path to trigger this vulnerability.
This issue did not affect the versions of ntp as shipped with Red Hat Enterprise Linux 5, 6, and 7. This issue only affected OpenVMS operating systems, which use characters other than "/" and "\" for directory separation, allowing exploitation of this flaw.