Nessus Plugin #11178
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (Q329834)
- Family:
- Windows : Microsoft Bulletins
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2002 SECNAP Network Security, LLC
- Summary:
- Checks for MS Hotfix Q329834, Unchecked Buffer in PPTP DOS
- Version:
- $Revision: 1.12 $
- Cve_id:
- CAN-2002-1214
- Bugtraq_id:
- 5807, 6067
- Xrefs:
- -
- Description:
Hotfix to fix Unchecked Buffer in PPTP Implementation
(Q329834) is not installed.
A security vulnerability results in the Windows 2000 and
Windows XP implementations because of an unchecked buffer
in a section of code that processes the control data used
to establish, maintain and tear down PPTP connections. By
delivering specially malformed PPTP control data to an
affected server, an attacker could corrupt kernel memory
and cause the system to fail, disrupting any work in progress
on the system.
Impact of vulnerability: Denial of service
Maximum Severity Rating: Critical
Recommendation: Administrators should install the patch immediately.
Affected Software:
Microsoft Windows 2000
Microsoft Windows XP
See
http://www.microsoft.com/technet/security/bulletin/ms02-063.mspx
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.