CVE-2009-1252

Name: CVE-2009-1252
Creator: NVD / NIST
Published: 2009-05-19T19:30:00.67+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 21.12%

Last modified Jun 16, 2026

CVE-2009-1252 is a vulnerability of currently unknown severity. Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.. EPSS estimates a 21.12% chance of exploitation in the next 30 days.

Description

Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.

Metrics

EPSS Probability

21.12%

97.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Ntp	Ntp	4.2.4p0
Ntp	Ntp	4.2.4p1
Ntp	Ntp	4.2.4p2
Ntp	Ntp	4.2.4p3
Ntp	Ntp	4.2.4p4
Ntp	Ntp	4.2.4p5
Ntp	Ntp	4.2.4p6
Ntp	Ntp	4.2.5p0
Ntp	Ntp	4.2.5p1
Ntp	Ntp	4.2.5p2
Ntp	Ntp	4.2.5p3
Ntp	Ntp	4.2.5p4
Ntp	Ntp	4.2.5p5
Ntp	Ntp	4.2.5p6
Ntp	Ntp	4.2.5p7
Ntp	Ntp	4.2.5p8
Ntp	Ntp	4.2.5p9
Ntp	Ntp	4.2.5p10
Ntp	Ntp	4.2.5p11
Ntp	Ntp	4.2.5p12
Ntp	Ntp	4.2.5p13
Ntp	Ntp	4.2.5p14
Ntp	Ntp	4.2.5p15
Ntp	Ntp	4.2.5p16
Ntp	Ntp	4.2.5p17
Ntp	Ntp	4.2.5p18
Ntp	Ntp	4.2.5p19
Ntp	Ntp	4.2.5p20
Ntp	Ntp	4.2.5p21
Ntp	Ntp	4.2.5p23
Ntp	Ntp	4.2.5p24
Ntp	Ntp	4.2.5p25
Ntp	Ntp	4.2.5p26
Ntp	Ntp	4.2.5p27
Ntp	Ntp	4.2.5p28
Ntp	Ntp	4.2.5p29
Ntp	Ntp	4.2.5p30
Ntp	Ntp	4.2.5p31
Ntp	Ntp	4.2.5p32
Ntp	Ntp	4.2.5p33
Ntp	Ntp	4.2.5p35
Ntp	Ntp	4.2.5p36
Ntp	Ntp	4.2.5p37
Ntp	Ntp	4.2.5p38
Ntp	Ntp	4.2.5p39
Ntp	Ntp	4.2.5p40
Ntp	Ntp	4.2.5p41
Ntp	Ntp	4.2.5p42
Ntp	Ntp	4.2.5p43
Ntp	Ntp	4.2.5p44

Showing 50 of 78 affected configurations. See NVD for the full list.

References

Timeline

Published: May 19, 2009
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2009-1252?

How severe is CVE-2009-1252?

Severity scoring for CVE-2009-1252 is pending analysis. The EPSS model estimates a 21.12% probability of exploitation in the next 30 days.

How do I fix CVE-2009-1252?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2009-1252?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST