| ID |
CVE-2004-0649
|
| Summary |
Buffer overflow in write_packet in control.c for l2tpd may allow remote attackers to execute arbitrary code. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:l2tpd:l2tpd:0.62:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.62:*:*:*:*:*:*:*
-
cpe:2.3:a:l2tpd:l2tpd:0.63:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.63:*:*:*:*:*:*:*
-
cpe:2.3:a:l2tpd:l2tpd:0.64:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.64:*:*:*:*:*:*:*
-
cpe:2.3:a:l2tpd:l2tpd:0.65:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.65:*:*:*:*:*:*:*
-
cpe:2.3:a:l2tpd:l2tpd:0.66:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.66:*:*:*:*:*:*:*
-
cpe:2.3:a:l2tpd:l2tpd:0.67:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.67:*:*:*:*:*:*:*
-
cpe:2.3:a:l2tpd:l2tpd:0.68:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.68:*:*:*:*:*:*:*
-
cpe:2.3:a:l2tpd:l2tpd:0.69:*:*:*:*:*:*:*
cpe:2.3:a:l2tpd:l2tpd:0.69:*:*:*:*:*:*:*
-
cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 10.0 (as of 11-07-2017 - 01:30) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| COMPLETE |
COMPLETE |
COMPLETE |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
| refmap
via4
|
| bugtraq | 20040604 bss-based buffer overflow in l2tpd | | debian | DSA-530 | | gentoo | GLSA-200407-17 | | xf | l2tpd-writepacket-bo(16326) |
|
| Last major update |
11-07-2017 - 01:30 |
| Published |
06-08-2004 - 04:00 |
| Last modified |
11-07-2017 - 01:30 |
