Vulnerabilities

CVE-2014-3158

by Fred · 15/11/2014

Integer overflow in the getword function in options.c in pppd in Paul’s PPP Package (ppp) before 2.4.7 allows attackers to "access privileged options" via a long word in an options file, which triggers a heap-based buffer overflow that "[corrupts] security-relevant variables."

Date published : 2014-11-15

http://advisories.mageia.org/MGASA-2014-0368.html

http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

Similar

Tags: Cybersecurity Alert