8 matches found
EUVD-2014-3176
Malware in sbrugna...
CVE-2015-3310
Buffer overflow in the rcmksid function in plugins/radius/util.c in Paul's PPP Package ppp 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service crash via a start accounting message to the RADIUS server...
CVE-2015-3310
CVE-2015-3310 affects the Paul’s PPP Package (ppp) prior to 2.4.7. A buffer overflow in the rc_mksid() function (plugins/radius/util.c) occurs when the pppd PID > 65535, allowing remote attackers to crash the PPP daemon by sending a crafted RADIUS start accounting message, i.e., a DoS conditio...
CVE-2015-3310
Buffer overflow in the rcmksid function in plugins/radius/util.c in Paul's PPP Package ppp 2.4.6 and earlier, when the PID for pppd is greater than 65535, allows remote attackers to cause a denial of service crash via a start accounting message to the RADIUS server...
Integer overflow
Integer overflow in the getword function in options.c in pppd in Paul's PPP Package ppp before 2.4.7 allows attackers to "access privileged options" via a long word in an options file, which triggers a heap-based buffer overflow that "corrupts security-relevant variables."...
CVE-2014-3158
Integer overflow in the getword function in options.c in pppd in Paul's PPP Package ppp before 2.4.7 allows attackers to "access privileged options" via a long word in an options file, which triggers a heap-based buffer overflow that "corrupts security-relevant variables."...
CVE-2014-3158
An entry for CVE-2014-3158 concerns pppd (Paul's PPP Package, ppp) before 2.4.7. The root cause is an integer overflow in getword (options.c) that triggers a heap-based buffer overflow, potentially corrupting security-relevant variables. This allows attackers to access privileged options via a lo...
CVE-2014-3158
Integer overflow in the getword function in options.c in pppd in Paul's PPP Package ppp before 2.4.7 allows attackers to "access privileged options" via a long word in an options file, which triggers a heap-based buffer overflow that "corrupts security-relevant variables."...