ctrlpacket.c in PoPToP PPTP server prior to 1.1.4-b3 allows remote malicious users to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
poptop pptp server 1.0.1 |
||
poptop pptp server 1.1.2 |
||
poptop pptp server 1.1.3 |
||
poptop pptp server 1.1.3_2002-10-09 |
||
poptop pptp server 1.1.4b1 |
||
poptop pptp server 1.1.4b2 |