CVE-2007-0244

EPSS 4.7%

pptpd

Published: 5/11/2007Modified: 3/9/2026

Also known as:DSA-1288-1DEBIAN-CVE-2007-0244

Description

pptpgre.c in PoPToP Point to Point Tunneling Server (pptpd) before 1.3.4 allows remote attackers to cause a denial of service (PPTP connection tear-down) via (1) GRE packets with out-of-order sequence numbers or (2) certain GRE packets that are processed using a wrong pointer and improperly dequeued.

Affected packages (3)

Debian/pptpdfrom 0, < 1.3.4-1
Debian/pptpdfrom 0, < 1.3.0-2etch1
Debian/pptpdfrom 0, < 1.3.0-2etch2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-0244