The PPTP server in Astaro Security Linux before 4.024 provides information about its version, which makes it easier for remote attackers to construct specialized attacks.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Security_linux | Astaro | 4.017 (including) | 4.017 (including) |
| Security_linux | Astaro | 4.018 (including) | 4.018 (including) |
| Security_linux | Astaro | 4.019 (including) | 4.019 (including) |
| Security_linux | Astaro | 4.020 (including) | 4.020 (including) |
| Security_linux | Astaro | 4.021 (including) | 4.021 (including) |
| Security_linux | Astaro | 4.022 (including) | 4.022 (including) |
| Security_linux | Astaro | 4.023 (including) | 4.023 (including) |
References
- http://secunia.com/advisories/13089
- http://securitytracker.com/id?1012065
- http://www.astaro.org/showflat.php?Cat=\u0026Number=51459\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#51459
- http://www.osvdb.org/11406
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17959
- http://secunia.com/advisories/13089
- http://securitytracker.com/id?1012065
- http://www.astaro.org/showflat.php?Cat=\u0026Number=51459\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#51459
- http://www.osvdb.org/11406
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17959