Vulnerabilities Identified in Network Time Protocol Daemon
Original release date: December 19, 2014
from US-CERT: The United States Computer Emergency Readiness Team http://1.usa.gov/1zeo5Xm
NTP has released an update that addresses multiple vulnerabilities in the Network Time Protocol daemon. Exploitation of these vulnerabilities may allow a remote attacker to execute malicious code.
US-CERT encourages users and administrators to review Vulnerability Note VU#852879 and update to NTP 4.2.8 if necessary.
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT: The United States Computer Emergency Readiness Team http://1.usa.gov/1zeo5Xm