Test ID:	1.3.6.1.4.1.25623.1.0.11178
Category:	Windows : Microsoft Bulletins
Title:	Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (Q329834)
Summary:	Hotfix to fix Unchecked Buffer in PPTP Implementation; (Q329834) is not installed.
Description:	Summary: Hotfix to fix Unchecked Buffer in PPTP Implementation (Q329834) is not installed. Vulnerability Insight: A security vulnerability results in the Windows 2000 and Windows XP implementations because of an unchecked buffer in a section of code that processes the control data used to establish, maintain and tear down PPTP connections. By delivering specially malformed PPTP control data to an affected server, an attacker could corrupt kernel memory and cause the system to fail, disrupting any work in progress on the system. Vulnerability Impact: Denial of service Affected Software/OS: - Microsoft Windows 2000 - Microsoft Windows XP Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2002-1214 BugTraq ID: 5807 http://www.securityfocus.com/bid/5807 Bugtraq: 20020926 Microsoft PPTP Server and Client remote vulnerability (Google Search) http://online.securityfocus.com/archive/1/293146 Microsoft Security Bulletin: MS02-063 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-063 http://www.iss.net/security_center/static/10199.php
Copyright	Copyright (C) 2002 SECNAP Network Security, LLC

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.