Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The crontab script in the ntp package before 1:4.2.6.p3+dfsg-1ubuntu3.11 on Ubuntu 12.04 LTS, before 1:4.2.6.p5+dfsg-3ubuntu2.14.04.10 on Ubuntu 14.04 LTS, on Ubuntu Wily, and before 1:4.2.8p4+dfsg-3ubuntu5.3 on Ubuntu 16.04 LTS allows local users with access to the ntp account to write to arbitrary files and consequently gain privileges via vectors involving statistics directory cleanup.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ntp package on Ubuntu 安全漏洞
Vulnerability Description
Ubuntu是英国科能(Canonical)公司和Ubuntu基金会共同开发的一套以桌面应用为主的GNU/Linux操作系统。ntp package是其中的一个同步时间的协议包。 基于Ubuntu平台的ntp package中的crontab脚本存在安全漏洞。本地攻击者可利用该漏洞写入任意文件,获取权限。以下版本受到影响:基于Ubuntu 12.04 LTS版本和Ubuntu Wily平台的ntp package 1:4.2.6.p3+dfsg-1ubuntu3.11之前的版本,基于Ubuntu 16.0
CVSS Information
N/A
Vulnerability Type
N/A