532 matches found
Debian DSA-557-1 : rp-pppoe - missing privilege dropping
Max Vozeler discovered a vulnerability in pppoe, the PPP over Ethernet driver from Roaring Penguin. When the program is running setuid root which is not the case in a default Debian installation, an attacker could overwrite any file on the file system. %NASLMINLEVEL 70300 C Tenable Network...
[SECURITY] [DSA 557-1] New rp-pppoe packages fix potential root compromise
-------------------------------------------------------------------------- Debian Security Advisory DSA 557-1 [email protected] http://www.debian.org/security/ Martin Schulze October 4th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 557-1] New rp-pppoe packages fix potential root compromise
-------------------------------------------------------------------------- Debian Security Advisory DSA 557-1 [email protected] http://www.debian.org/security/ Martin Schulze October 4th, 2004 http://www.debian.org/security/faq -...
DSA-557-1 pppoe - missing privilegue dropping
Bulletin has no description...
[RLSA_01-2004] QNX PPPoEd local root vulnerabilities
rfdslabs security advisory Title: QNX PPPoEd local root vulnerabilities RLSA01-2004 Versions: QNX RTP 6.1 possibly others Vendor: http://www.qnx.com Date: 02 Sep 2004 Author: Julio Cesar Fort julio at rfdslabs com br 1. Introduction PPPoEd daemon is used to provide a PPPoE connection, such as DSL...
CVE-2001-0026
CVE-2001-0026 affects rp-pppoe, a userspace PPPoE client. The issue occurs when a crafted TCP segment uses the Clamp MSS option with a zero-length option, which can cause the client to enter an infinite loop and drop the connection (denial of service). Mandrake/MDKSA-2000:084 notes versions prior...
CVE-2001-0026
rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option and a TCP packet with a zero-length TCP option...
CVE-2001-0026
rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option and a TCP packet with a zero-length TCP option...
DoS против rp-pppoe
TCP-пакет с TCP otpions нулевой длины приводит к зацикливанию...
DoS vulnerability in rp-pppoe versions <= 2.4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is a denial-of-service vulnerability in rp-pppoe versions up to 2.4. rp-pppoe is a user-space PPPoE client for a bunch of UNIXes and Linux, used by many residential ADSL customers. If you use the "Clamp MSS" option and someone crafts a TCP packe...
RedHat Linux 7.0 - Roaring Penguin PPPoE Denial of Service
RedHat Linux 7.0 - Roaring Penguin PPPoE Denial of Service source: https://www.securityfocus.com/bid/2098/info Roaring Penguin Software's PPPoE is a freeware PPP over Ethernet client often used by ADSL subscribers running Linux or NetBSD. PPPoE contains a possibly remotely exploitable denial of...
RedHat Linux 7.0 - Roaring Penguin PPPoE Denial of Service
source: https://www.securityfocus.com/bid/2098/info Roaring Penguin Software's PPPoE is a freeware PPP over Ethernet client often used by ADSL subscribers running Linux or NetBSD. PPPoE contains a possibly remotely exploitable denial of service vulnerability in its handling of TCP packets when th...