This script is Copyright (C) 2005-2016 Tenable Network Security, Inc.
The remote NTP server is affected by a privilege escalation
According to its version number, the NTP (Network Time Protocol)
server running on the remote host is affected by a flaw that causes it
to run with the permissions of a privileged user if a group name
rather than a group ID is specified on the command line. A local
attacker, who has managed to compromise the application through some
other means, can exploit this issue to gain elevated privileges.
See also :
Upgrade to NTP version 4.2.1 or later. Alternatively, start ntpd with
a group number.
Risk factor :
Medium / CVSS Base Score : 4.6
CVSS Temporal Score : 4.0
Public Exploit Available : true