Lucene search
+L

83 matches found

OSV
OSV
added 2016/09/12 10:59 a.m.3 views

CVE-2016-6398

The PPTP server in Cisco IOS 15.53M does not properly initialize packet buffers, which allows remote attackers to obtain sensitive information from earlier network communication by reading packet data, aka Bug ID CSCvb16274...

5.3CVSS5.8AI score0.01262EPSS
Exploits0References3
NVD
NVD
added 2016/09/12 10:59 a.m.15 views

CVE-2016-6398

The PPTP server in Cisco IOS 15.53M does not properly initialize packet buffers, which allows remote attackers to obtain sensitive information from earlier network communication by reading packet data, aka Bug ID CSCvb16274...

5.3CVSS5.1AI score0.01262EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/09/12 10:0 a.m.21 views

CVE-2016-6398

The PPTP server in Cisco IOS 15.53M does not properly initialize packet buffers, which allows remote attackers to obtain sensitive information from earlier network communication by reading packet data, aka Bug ID CSCvb16274...

5.1AI score0.01262EPSS
Exploits0References3
Fedora
Fedora
added 2016/05/07 1:19 p.m.15 views

[SECURITY] Fedora 24 Update: NetworkManager-pptp-1.2.0-1.fc24

This package contains software for integrating VPN capabilities with the PPTP server with NetworkManager...

2.5AI score
Exploits0
Prion
Prion
added 2007/05/11 4:19 a.m.9 views

Code injection

pptpgre.c in PoPToP Point to Point Tunneling Server pptpd before 1.3.4 allows remote attackers to cause a denial of service PPTP connection tear-down via 1 GRE packets with out-of-order sequence numbers or 2 certain GRE packets that are processed using a wrong pointer and improperly dequeued...

5CVSS6.6AI score0.02312EPSS
Exploits0References14Affected Software1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.40 views

PPTP overflow

The remote PPTP server has remote buffer overflow vulnerability. The problem occurs due to insufficient sanity checks when referencing user-supplied input used in various calculations. As a result, it may be possible for an attacker to trigger a condition where sensitive memory can be corrupted...

7.5CVSS1.4AI score0.71026EPSS
Exploits7References1
CVE
CVE
added 2005/07/17 4:0 a.m.60 views

CVE-2004-2251

The CVE describes the PPTP server in Astaro Security Linux before 4.024 disclosing its version, enabling attackers to tailor attacks against the system. The underlying issue is information disclosure via banner/version reporting rather than an explicit code flaw in core PPTP functionality. The av...

5CVSS6.8AI score0.021EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2005/07/17 4:0 a.m.25 views

CVE-2004-2251

The PPTP server in Astaro Security Linux before 4.024 provides information about its version, which makes it easier for remote attackers to construct specialized attacks...

6.4AI score0.021EPSS
Exploits0References5
NVD
NVD
added 2004/12/31 5:0 a.m.15 views

CVE-2004-2251

The PPTP server in Astaro Security Linux before 4.024 provides information about its version, which makes it easier for remote attackers to construct specialized attacks...

5CVSS6.4AI score0.021EPSS
Exploits0References5
NVD
NVD
added 2003/05/12 4:0 a.m.15 views

CVE-2003-0213

ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow...

7.5CVSS6.6AI score0.71026EPSS
Exploits7References9
OSV
OSV
added 2003/05/12 4:0 a.m.8 views

CVE-2003-0213

ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow...

6.5AI score
Exploits0References13
OSV
OSV
added 2003/05/12 4:0 a.m.3 views

DEBIAN-CVE-2003-0213

ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow...

7.5CVSS6.7AI score0.71026EPSS
Exploits7References1
CVE
CVE
added 2003/04/26 4:0 a.m.101 views

CVE-2003-0213

CVE-2003-0213 affects PoPToP PPTP server: a buffer overflow in ctrlpacket.c allows a remote attacker to cause denial of service (and potentially execute code) by sending a PPTP control packet with a length field of 0 or 1, which feeds a negative value into a read. Affected are PoPToP versions pri...

7.5CVSS6.4AI score0.71026EPSS
Exploits7References9Affected Software1
Debian CVE
Debian CVE
added 2003/04/26 4:0 a.m.61 views

CVE-2003-0213

ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow...

7.5CVSS6.3AI score0.71026EPSS
Exploits7
Cvelist
Cvelist
added 2003/04/26 4:0 a.m.30 views

CVE-2003-0213

ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow...

6.5AI score0.71026EPSS
Exploits7References9
seebug.org
seebug.org
added 2003/04/18 12:0 a.m.13 views

PoPToP PPTP <= 1.1.4-b3 Remote Root Exploit

No description provided by source. / exploit for a recently discovered vulnerability in PoPToP PPTP server under Linux. Versions affected are all prior to 1.1.4-b3 and 1.1.3-20030409. The exploit is capable of bruteforcing the RET address to find our buffer in the stack. Upon a successfull run it...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/04/16 12:0 a.m.118 views

PoPToP PPTP ctrlpacket.c Negative Read Remote Overflow

The remote PPTP server has remote buffer overflow vulnerability. The problem occurs due to insufficient sanity checks when referencing user-supplied input used in various calculations. As a result, it may be possible for an attacker to trigger a condition where sensitive memory can be corrupted...

7.5CVSS6.4AI score0.71026EPSS
Exploits7References1
securityvulns
securityvulns
added 2003/04/10 12:0 a.m.45 views

PoPToP PPTP server remotely exploitable buffer overflow

Versions older than 1.1.4-b3 and 1.1.3-20030409 affected. This seems to be exploitable only with Linux. PPTP? ----- PPTP-over-IPSEC is commonly used to create VPNs. Windows plays quite nicely with it. problem ------- PPTP packet header contain 16bit length which specifies the full size of the...

0.5AI score
Exploits0
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.23 views

CVE-2001-0017

Memory leak in PPTP server in Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed data packet, aka the "Malformed PPTP Packet Stream" vulnerability...

6.5AI score0.17341EPSS
Exploits0References3
CVE
CVE
added 2001/05/07 4:0 a.m.52 views

CVE-2001-0017

The CVE-2001-0017 issue affects Windows NT 4.0 PPTP server, where a memory leak can be triggered by malformed PPTP data packets, leading to remote denial of service. The vulnerability is due to improper handling of PPTP packets in the Windows NT PPTP implementation, which can exhaust system resou...

5CVSS6.6AI score0.17341EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder