Lucene search

PRIOn knowledge basePRION:CVE-2007-0244

HistoryMay 11, 2007 - 4:19 a.m.

Code injection

2007-05-1104:19:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.163 Low

EPSS

Percentile

95.8%

JSON

pptpgre.c in PoPToP Point to Point Tunneling Server (pptpd) before 1.3.4 allows remote attackers to cause a denial of service (PPTP connection tear-down) via (1) GRE packets with out-of-order sequence numbers or (2) certain GRE packets that are processed using a wrong pointer and improperly dequeued.

CPENameOperatorVersion
pptp_serverle1.3.3

CPE	Name	Operator	Version
	pptp_server	le	1.3.3

References

secunia.com/advisories/25220

secunia.com/advisories/25255

secunia.com/advisories/26987

security.gentoo.org/glsa/glsa-200705-18.xml

sourceforge.net/project/shownotes.php?release_id=501476&group_id=44827

www.debian.org/security/2007/dsa-1288

www.novell.com/linux/security/advisories/2007_10_sr.html

www.novell.com/linux/security/advisories/2007_19_sr.html

www.securityfocus.com/bid/23886

www.securitytracker.com/id?1018064

www.trustix.org/errata/2007/0017/

www.ubuntu.com/usn/usn-459-1

www.ubuntu.com/usn/usn-459-2

www.vupen.com/english/advisories/2007/1743

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.163 Low

EPSS

Percentile

95.8%

JSON

Related for PRION:CVE-2007-0244