Описание
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service (daemon crash) via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location.
Ссылки
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:samba:ppp:2.4.1:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:canonical:ubuntu_linux:4.10:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.02083
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-191
Связанные уязвимости
CVSS3: 7.5
debian
больше 20 лет назад
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attack ...
CVSS3: 7.5
github
больше 3 лет назад
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service (daemon crash) via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location.
EPSS
Процентиль: 83%
0.02083
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-191