PPTP.Negative.Read.BufferOveflow
Description
This indicates a buffer overflow vulnerability in Linux PPTP server.
Point to Point Tunneling Protocol (PPTP) is typically used by mobile users to establish a Virtual Private Network (VPN) tunnel over the public internet to their corporate networks. Due to inapt sanitization of user input data, an attacker can exploit this vulnerability in several calculation routines within the server and execute arbitrary code on the target system.
Affected Products
PPTP Server versions up to 1.1.4 -b3 and 1.1.3 -20030409
Impact
Attackers can execute arbitrary code on infected machine
Recommended Actions
Apply appropriate patches or upgrade the system to the latest non-vulnerable version from the following URL:
http://sourceforge.net/project
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |