What the vulnerability does

01Description

The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition.

Key dates

02Disclosure timeline

October 6, 2020 CVE published
August 4, 2024 Record updated