CVE-2003-0213

Published May 12, 2003

Last updated 8 years ago

CVSS info 7.5

Overview

Description: ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:poptop:pptp_server:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A70190FB-49BE-4CE1-ADC0-8628391BA619"
          },
          {
            "criteria": "cpe:2.3:a:poptop:pptp_server:1.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7FA9CE98-B6FB-4FF5-AFC3-A9BAA43383B3"
          },
          {
            "criteria": "cpe:2.3:a:poptop:pptp_server:1.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CAA9577-B8F7-4A2C-AE80-BDABA18C1A91"
          },
          {
            "criteria": "cpe:2.3:a:poptop:pptp_server:1.1.3_2002-10-09:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D476BBF-D344-461D-A4E8-5D11232DDAAE"
          },
          {
            "criteria": "cpe:2.3:a:poptop:pptp_server:1.1.4b1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58C239FC-9480-4FF5-93D8-BC2504119E3B"
          },
          {
            "criteria": "cpe:2.3:a:poptop:pptp_server:1.1.4b2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D15C1FDB-C8BE-4ABC-89C3-9604FA8F7B5C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References