CVE-2014-3158

2014-11-15T16:59:00
ID CVE-2014-3158
Type cve
Reporter NVD
Modified 2016-10-24T21:59:35

Description

Integer overflow in the getword function in options.c in pppd in Paul's PPP Package (ppp) before 2.4.7 allows attackers to "access privileged options" via a long word in an options file, which triggers a heap-based buffer overflow that "[corrupts] security-relevant variables."