CVE-2020-7465

EPSS 2.8%CWE-787

The L2TP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted L2TP control packet with AVP Q.931 Cause Code to execute arbitrary code or cause a denial of service (memory corruption).

Productos afectados

n/a · MPD: FreeBSD PPP daemon

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://sourceforge.net/p/mpd/bugs/70/https://sourceforge.net/p/mpd/svn/2377/