Vulnerability Details CVE-2004-0649
Buffer overflow in write_packet in control.c for l2tpd may allow remote attackers to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.055
EPSS Ranking 89.7%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=bugtraq&m=108640917925735&w=2
- http://security.gentoo.org/glsa/glsa-200407-17.xml
- http://www.debian.org/security/2004/dsa-530
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16326
- http://marc.info/?l=bugtraq&m=108640917925735&w=2
- http://security.gentoo.org/glsa/glsa-200407-17.xml
- http://www.debian.org/security/2004/dsa-530
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16326
Products affected by CVE-2004-0649
-
cpe:2.3:a:l2tpd:l2tpd:0.62
-
cpe:2.3:a:l2tpd:l2tpd:0.63
-
cpe:2.3:a:l2tpd:l2tpd:0.64
-
cpe:2.3:a:l2tpd:l2tpd:0.65
-
cpe:2.3:a:l2tpd:l2tpd:0.66
-
cpe:2.3:a:l2tpd:l2tpd:0.67
-
cpe:2.3:a:l2tpd:l2tpd:0.68
-
cpe:2.3:a:l2tpd:l2tpd:0.69
-
cpe:2.3:o:gentoo:linux:1.4