VYPR
High severity7.8NVD Advisory· Published Apr 14, 2017· Updated Jun 17, 2026

CVE-2016-0727

CVE-2016-0727

Description

The crontab script in the ntp package before 1:4.2.6.p3+dfsg-1ubuntu3.11 on Ubuntu 12.04 LTS, before 1:4.2.6.p5+dfsg-3ubuntu2.14.04.10 on Ubuntu 14.04 LTS, on Ubuntu Wily, and before 1:4.2.8p4+dfsg-3ubuntu5.3 on Ubuntu 16.04 LTS allows local users with access to the ntp account to write to arbitrary files and consequently gain privileges via vectors involving statistics directory cleanup.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Jqhph/NTPinferred
    Range: <4.2.8p4+dfsg-3ubuntu5.3
  • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 2 more
    • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • Ubuntu/ntpllm-create
    Range: <1:4.2.6.p3+dfsg-1ubuntu3.11 on Ubuntu 12.04 LTS, <1:4.2.6.p5+dfsg-3ubuntu2.14.04.10 on Ubuntu 14.04 LTS, on Ubuntu Wily, <1:4.2.8p4+dfsg-3ubuntu5.3 on Ubuntu 16.04 LTS

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.