CVSS: 7.5EPSS: 10%CPEs: 14EXPL: 0CVE-2007-0244
https://notcve.org/view.php?id=CVE-2007-0244
11 May 2007 — pptpgre.c in PoPToP Point to Point Tunneling Server (pptpd) before 1.3.4 allows remote attackers to cause a denial of service (PPTP connection tear-down) via (1) GRE packets with out-of-order sequence numbers or (2) certain GRE packets that are processed using a wrong pointer and improperly dequeued. El pptpgre.c en el PoPToP Point to Point Tunneling Server (pptpd)anterior al 1.3.4 permite a atacantes remotos provocar una denegación de servicio (derribo -tear-down- de la conexión PPTP) mediante (1) paquetes... • http://secunia.com/advisories/25220 •
CVSS: 7.5EPSS: 68%CPEs: 6EXPL: 6CVE-2003-0213 – PoPToP < 1.1.3-b3/1.1.3-20030409 - Negative Read Overflow
https://notcve.org/view.php?id=CVE-2003-0213
26 Apr 2003 — ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow. ctlpacket.c en el servidor PoPToP PPTP anteriores a 1.1.4-b3 permite a atacantes remotos causar una denegación de servicio mediante una longitud de campo de 0 o 1, lo que causa que sea pasado un valor negativo en una operación de lectura, conduciendo a un desbordamiento de búfer. • https://www.exploit-db.com/exploits/9952 •