Main Vulnerability Database Exploits ID:6141 - Exploit for NULL pointer dereference in NTPsec - CVE-2019-6445

ID:6141 - Exploit for NULL pointer dereference in NTPsec - CVE-2019-6445

Published: June 17, 2021

Vulnerability identifier: #VU17184

Vulnerability risk: Low

CVE-ID: CVE-2019-6445

CWE-ID: CWE-476

Exploitation vector: Remote access

Vulnerable software:
NTPsec

Link to public exploit:

https://www.exploit-db.com/exploits/46177/

Vulnerability description

The vulnerability allows a remote authenticated attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error. A remote authenticated attacker can trigger NULL pointer dereference and ntpd crash in ntp_control.c, related to ctl_getitem. A remote attacker can perform a denial of service (DoS) attack.

Remediation

Update to version 1.1.3.

ID:6141 - Exploit for NULL pointer dereference in NTPsec - CVE-2019-6445

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human