CVE-2004-0649

Published: Aug 6, 2004Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Buffer overflow in write_packet in control.c for l2tpd may allow remote attackers to execute arbitrary code.

Affected (9)

Products: L2tpd: L2tpd · Gentoo: Linux

1 product

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
L2tpd L2tpd	Version 0.62
L2tpd L2tpd	Version 0.63
L2tpd L2tpd	Version 0.64
L2tpd L2tpd	Version 0.65
L2tpd L2tpd	Version 0.66
L2tpd L2tpd	Version 0.67
L2tpd L2tpd	Version 0.68
L2tpd L2tpd	Version 0.69

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Gentoo Linux	Version 1.4

References (8)

http://marc.info/?l=bugtraq&m=108640917925735&w=2

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200407-17.xml

Source: cve@mitre.org

Vendor Advisory

http://www.debian.org/security/2004/dsa-530

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/16326

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=108640917925735&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200407-17.xml

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.debian.org/security/2004/dsa-530

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/16326

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.