5 matches found
CVE-2020-7466
The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition...
CVE-2020-7466
The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition...
CVE-2020-7466
The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition...
CVE-2020-7466
The issue is in the MPD PPP implementation prior to version 5.9. A remote attacker who can send specifically crafted PPP authentication messages can trigger a read beyond the allocated memory buffer, leading to a denial of service. Affected component: MPD (Music Player Daemon) PPP handling. Root ...
FreeBSD : Multi-link PPP protocol daemon MPD5 remotely exploitable crash (cd97c7ca-f079-11ea-9c31-001b216d295b)
Version 5.9 contains security fix for L2TP clients and servers. Insufficient validation of incoming L2TP control packet specially crafted by unauthenticated user might lead to unexpected termination of the process. The problem affects mpd versions since 4.0 that brought in initial support for L2T...