l2tpd 0.67 does not initialize the random number generator, which allows remote attackers to hijack sessions.
6.5AI Score
0.012EPSS
Vulnerability in l2tpd 0.67 allows remote attackers to overwrite the vendor field via a long value in an attribute/value pair, possibly via a buffer overflow.
6.8AI Score
0.003EPSS
Buffer overflow in write_packet in control.c for l2tpd may allow remote attackers to execute arbitrary code.
7.4AI Score
0.035EPSS