Family: CISCO --> Category: infos
CSCdt93866 Vulnerability Scan
Vulnerability Scan Summary
Uses SNMP to determine if a flaw is present
Detailed Explanation for this Vulnerability Test
By sending a crafted NTP control packet, it is possible to trigger a
buffer overflow in the NTP daemon. This vulnerability can be
exploited remotely. The successful exploitation may cause arbitrary
code to be executed on the target machine.
This vulnerability is documented as Cisco Bug ID CSCdt93866.
A possible hacker may use this flaw to execute arbitrary code on
the remote host (although it's believed to not be doable)
Solution : http://www.cisco.com/warp/public/707/NTP-pub.shtml
Threat Level: High
*** As Nessus solely relied on the banner of the remote host
*** this might be a false positive
Click HERE for more information and discussions on this network vulnerability scan.