Meinberg Ims-Lantime M1000 Denial Of Service Overflow Obtain Information Vulnerability
1 Aug. 2016
Summary
Meinberg Ims-lantime is prone to a denial of service (DoS) vulnerability.This allow a remote attacker to cause a denial of service (DoS) condition due to high consumption of system resources via certain vulnerable vectors. Meinberg Ims-lantime is prone to a overflow vulnerability. This allows a remote attackers to execute arbitrary code via crafted packets and cause a denial of service (memory corruption). Meinberg Ims-lantime is prone to a gain information vulnerability.This allows local or remote attackers to gain privileges via a malicious program in the affected application.
Stack-based buffer overflow in the NTP time-server interface on Meinberg IMS-LANTIME M3000, IMS-LANTIME M1000, IMS-LANTIME M500, LANTIME M900, LANTIME M600, LANTIME M400, LANTIME M300, LANTIME M200, LANTIME M100, SyncFire 1100, and LCES devices with firmware before 6.20.004 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via a crafted parameter in a POST request.