CVE-2007-0244 Common Vulnerabilities and Exposures

Upstream information

CVE-2007-0244 at MITRE

Description

pptpgre.c in PoPToP Point to Point Tunneling Server (pptpd) before 1.3.4 allows remote attackers to cause a denial of service (PPTP connection tear-down) via (1) GRE packets with out-of-order sequence numbers or (2) certain GRE packets that are processed using a wrong pointer and improperly dequeued.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	5
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P
Access Vector	Network
Access Complexity	Low
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Partial

SUSE Bugzilla entries: 270811 [RESOLVED / FIXED], 307261 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SR:2007:010, published Fri, 11 May 2007 13:00:00 +0000
SUSE-SR:2007:019, published Fri, 28 Sep 2007 09:00:00 +0000

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 01:54:56 2013
CVE page last modified: Fri Dec 8 16:19:22 2023