Vulnerability Database

296,147

Total vulnerabilities in the database

CVE-2005-2496

The xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option and using a string to specify the group, uses the group ID of the user instead of the group, which causes xntpd to run with different privileges than intended.

  • Published: Sep 2, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-2496
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
dave_mills / ntpd - 4.2.0.a.2004-06-17_4.fc3.x