Show filters
38 Total Results
Displaying 31-38 of 38
Sort by:
Attacker Value
Unknown
CVE-2008-4048
Disclosure Date: September 11, 2008 (last updated October 04, 2023)
Heap-based buffer overflow in a certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to execute arbitrary code via a long third argument to the CreateURLShortcut method.
0
Attacker Value
Unknown
CVE-2008-4049
Disclosure Date: September 11, 2008 (last updated October 04, 2023)
A certain ActiveX control in fwRemoteCfg.dll 3.3.3.1 in Friendly Technologies FriendlyPPPoE Client 3.0.0.57 allows remote attackers to execute arbitrary programs via arguments to the RunApp method.
0
Attacker Value
Unknown
CVE-2006-2770
Disclosure Date: June 02, 2006 (last updated October 04, 2023)
Directory traversal vulnerability in randompic.php in pppBLOG 0.3.8 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) sequence in an index of the "file" array parameter, as demonstrated by file[0].
0
Attacker Value
Unknown
CVE-2005-0205
Disclosure Date: May 02, 2005 (last updated February 22, 2025)
KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolution by opening a number of file descriptors before executing kppp.
0
Attacker Value
Unknown
CVE-2004-1002
Disclosure Date: March 01, 2005 (last updated February 22, 2025)
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service (daemon crash) via a CBCP packet with an invalid length value that causes pppd to access an incorrect memory location.
0
Attacker Value
Unknown
CVE-2004-0564
Disclosure Date: December 23, 2004 (last updated February 22, 2025)
Roaring Penguin pppoe (rp-ppoe), if installed or configured to run setuid root contrary to its design, allows local users to overwrite arbitrary files. NOTE: the developer has publicly disputed the claim that this is a vulnerability because pppoe "is NOT designed to run setuid-root." Therefore this identifier applies *only* to those configurations and installations under which pppoe is run setuid root despite the developer's warnings.
0
Attacker Value
Unknown
CVE-2001-0026
Disclosure Date: February 12, 2001 (last updated February 22, 2025)
rp-pppoe PPPoE client allows remote attackers to cause a denial of service via the Clamp MSS option and a TCP packet with a zero-length TCP option.
0
Attacker Value
Unknown
CVE-1999-1203
Disclosure Date: February 12, 1999 (last updated February 22, 2025)
Multilink PPP for ISDN dialup users in Ascend before 4.6 allows remote attackers to cause a denial of service via a spoofed endpoint identifier.
0