Network Time Protocol Daemon (ntpd) < 4.2.1 -u Group Permission Weakness Privilege Escalation
Medium Nessus Plugin ID 19517
SynopsisThe remote NTP server is affected by a privilege escalation vulnerability.
DescriptionAccording to its version number, the NTP (Network Time Protocol) server running on the remote host is affected by a flaw that causes it to run with the permissions of a privileged user if a group name rather than a group ID is specified on the command line. A local attacker, who has managed to compromise the application through some other means, can exploit this issue to gain elevated privileges.
SolutionUpgrade to NTP version 4.2.1 or later. Alternatively, start ntpd with a group number.