CVE-2020-7466

EPSS 2.0%CWE-125

The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition.

Produtos afetados

n/a · MPD: FreeBSD PPP daemon

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://sourceforge.net/p/mpd/bugs/69/https://sourceforge.net/p/mpd/svn/2374/