Apologies if this has been discussed before (i wasn't able to find anything relevent in the search). I ran a securityspace.com audit passed my Astaro 5.009 box. It revealed one red alert - as below. Should i be worried about this?
Gain root remotely: PPTP overflow
Description
unknown (1723/tcp)
The remote PPTP server has remote buffer overflow vulnerability.
The problem occurs due to insufficient sanity checks when referencing
user-supplied input used in various calculations. As a result, it may
be possible for an attacker to trigger a condition where sensitive
memory can be corrupted. Successful exploitation of this issue may
allow an attacker to execute arbitrary code with the privileges of
the affected server.
Solution : The vendor has released updated releases of
PPTP server which address this issue. Users are advised
to upgrade as soon as possible.
Risk factor : High
CVE : CAN-2003-0213
BID : 7316
*** Baseline Alert ***
This vulnerability is new to your system, based on the baseline comparison done.
CVE Description
ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow.
Related Security Advisory Cross Reference(s)
BugTraq ID: 7316
Common Vulnerability Exposure (CVE) ID: CAN-2003-0213
Bugtraq: 20030409 PoPToP PPTP server remotely exploitable buffer overflow (Google Search)
http://www.securityfocus.com/archive/1/317995
Bugtraq: 20030418 Exploit for PoPToP PPTP server (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=105068728421160&w=2
Debian Security Information: DSA-295 (Google Search)
http://www.debian.org/security/2003/dsa-295
SuSE Security Announcement: SuSE-SA:2003:029 (Google Search)
http://www.suse.de/de/security/2003_029.html
Bugtraq: 20030428 GLSA: pptpd (200304-08) (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=105154539727967&w=2
This thread was automatically locked due to age.
