CVE-2004-0649

2004-08-0604:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.035

Percentile

91.6%

JSON

Buffer overflow in write_packet in control.c for l2tpd may allow remote attackers to execute arbitrary code.

Affected configurations

Nvd

Node

l2tpdl2tpdMatch0.62

l2tpdl2tpdMatch0.63

l2tpdl2tpdMatch0.64

l2tpdl2tpdMatch0.65

l2tpdl2tpdMatch0.66

l2tpdl2tpdMatch0.67

l2tpdl2tpdMatch0.68

l2tpdl2tpdMatch0.69

Node

gentoolinuxMatch1.4

VendorProductVersionCPE
l2tpdl2tpd0.62cpe:2.3:a:l2tpd:l2tpd:0.62:*:*:*:*:*:*:*
l2tpdl2tpd0.63cpe:2.3:a:l2tpd:l2tpd:0.63:*:*:*:*:*:*:*
l2tpdl2tpd0.64cpe:2.3:a:l2tpd:l2tpd:0.64:*:*:*:*:*:*:*
l2tpdl2tpd0.65cpe:2.3:a:l2tpd:l2tpd:0.65:*:*:*:*:*:*:*
l2tpdl2tpd0.66cpe:2.3:a:l2tpd:l2tpd:0.66:*:*:*:*:*:*:*
l2tpdl2tpd0.67cpe:2.3:a:l2tpd:l2tpd:0.67:*:*:*:*:*:*:*
l2tpdl2tpd0.68cpe:2.3:a:l2tpd:l2tpd:0.68:*:*:*:*:*:*:*
l2tpdl2tpd0.69cpe:2.3:a:l2tpd:l2tpd:0.69:*:*:*:*:*:*:*
gentoolinux1.4cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
l2tpd	l2tpd	0.62	cpe:2.3:a:l2tpd:l2tpd:0.62:::::::*
l2tpd	l2tpd	0.63	cpe:2.3:a:l2tpd:l2tpd:0.63:::::::*
l2tpd	l2tpd	0.64	cpe:2.3:a:l2tpd:l2tpd:0.64:::::::*
l2tpd	l2tpd	0.65	cpe:2.3:a:l2tpd:l2tpd:0.65:::::::*
l2tpd	l2tpd	0.66	cpe:2.3:a:l2tpd:l2tpd:0.66:::::::*
l2tpd	l2tpd	0.67	cpe:2.3:a:l2tpd:l2tpd:0.67:::::::*
l2tpd	l2tpd	0.68	cpe:2.3:a:l2tpd:l2tpd:0.68:::::::*
l2tpd	l2tpd	0.69	cpe:2.3:a:l2tpd:l2tpd:0.69:::::::*
gentoo	linux	1.4	cpe:2.3:o:gentoo:linux:1.4:::::::*