2 matches found
CVE-2022-4603
CVE-2022-4603 concerns pppdump dumpppp in pppdump/pppdump.c, where manipulation of spkt.buf/rpkt.buf leads to improper validation of an array index. The vulnerability’s real existence is repeatedly noted as doubtful in the initial description, though multiple connected sources still reference the...
CVE-2004-1002
CVE-2004-1002 affects pppd (cbcp.c) where an integer underflow on a CBCP packet with an invalid length enables a remote attacker to crash the daemon (DoS) for ppp 2.4.1. Affected component: pppd/CBCCP handling; root cause: integer underflow leading to memory access violation. Impact: daemon crash...