Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (Q329834)

Unchecked Buffer in PPTP Implementation Enables DOS Attacks (Q329834

Reporter	Title	Published	Views	Family All 8
Check Point Advisories	Microsoft Windows PPTP Service Buffer Overflow - Ver2 (CVE-2002-1214)	28 Dec 201400:00	–	checkpoint_advisories
CVE	CVE-2002-1214	1 Sep 200404:00	–	cve
Cvelist	CVE-2002-1214	1 Sep 200404:00	–	cvelist
Metasploit	MS02-063 PPTP Malformed Control Data Kernel Denial of Service	3 Jul 200901:24	–	metasploit
NVD	CVE-2002-1214	28 Oct 200205:00	–	nvd
OpenVAS	Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (Q329834)	3 Nov 200500:00	–	openvas
Packet Storm	MS02-063 PPTP Malformed Control Data Kernel Denial of Service	31 Aug 202400:00	–	packetstorm
Tenable Nessus	MS02-063: Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (329834)	28 Nov 200200:00	–	nessus

# OpenVAS Vulnerability Test
# $Id: smb_nt_ms02-063.nasl 8023 2017-12-07 08:36:26Z teissa $
# Description: Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (Q329834)
#
# Authors:
# Michael Scheidell SECNAP Network Security
#
# Copyright:
# Copyright (C) 2002 SECNAP Network Security, LLC
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

tag_summary = "Hotfix to fix Unchecked Buffer in PPTP Implementation 
 (Q329834) is not installed.

A security vulnerability results in the Windows 2000 and 
Windows XP implementations because of an unchecked buffer
in a section of code that processes the control data used
to establish, maintain and tear down PPTP connections. By
delivering specially malformed PPTP control data to an
affected server, an attacker could corrupt kernel memory
and cause the system to fail, disrupting any work in progress
on the system. 

Impact of vulnerability: Denial of service
Maximum Severity Rating: Critical 

Recommendation: Administrators should install the patch immediately. 

Affected Software: 

Microsoft Windows 2000 
Microsoft Windows XP 

See
http://www.microsoft.com/technet/security/bulletin/ms02-063.mspx";

if(description)
{
 script_id(11178);
 script_version("$Revision: 8023 $");
 script_tag(name:"last_modification", value:"$Date: 2017-12-07 09:36:26 +0100 (Thu, 07 Dec 2017) $");
 script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
 script_bugtraq_id(5807, 6067);
 script_tag(name:"cvss_base", value:"7.5");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
 script_cve_id("CVE-2002-1214");

 name = "Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (Q329834)";
 
 script_name(name);
 


 
 script_category(ACT_GATHER_INFO);
  script_tag(name:"qod_type", value:"registry");
 
 script_copyright("This script is Copyright (C) 2002 SECNAP Network Security, LLC");
 family = "Windows : Microsoft Bulletins";
 script_family(family);
 
 script_dependencies("secpod_reg_enum.nasl");
 script_require_keys("SMB/Registry/Enumerated");
 script_mandatory_keys("SMB/WindowsVersion");
 script_require_ports(139, 445);
 script_tag(name : "summary" , value : tag_summary);
 exit(0);
}

include("secpod_reg.inc");

if ( hotfix_check_sp(nt:7, win2k:4, xp:2) <= 0 ) exit(0);
if ( hotfix_missing(name:"Q329834") > 0 )
	security_message(get_kb_item("SMB/transport"));

07 Dec 2017 00:00Current

EPSS0.75525