Vijay Sarvepalli
Vijay Sarvepalli
> The code executes and I captured a buffer overflow in wireshark, but it did not crash the pppd server and claimed it did not get a return response from...
> I changed my options file to match yours as I was configured previously for EAP-TLS in Ubuntu 14.04 and got the following: >  > I also found more...
What version is your PPTP server and the backend PPP? If PPTP server is greater than 1.5 and ppp is above 2.4.5 , the negotiations are slightly different. The current...
> I tried running a VM of Ubuntu Server 14.04 with pptpd v1.3.4 and pppd v2.4.5 and still received the same error. > Here is a link to a pcap...
I am able to recreate this problem. It looks like something is way different in the newer kernel handling of GRE packets. It might take me sometime to test with...
Hello @WittsEnd2 I am also triaging close to where you are. There is definitely new behavior in modem hangup happening looks like from ppp and not pptpd. Once I have...
Hello @WittsEnd2 Tested this behavior as normal. You can install a broken version of pppd to check the overflow behavior. You can install of 2.4.8 from GitHub and test the...
I edited the ppp and recompiled it to become vulnerable again. I can recreate the crash, but may need to check again if the vulnerability is detected by the script....
Hello @WittsEnd2 Here is my pptpd-options file. The crash may not always happen, especially your environment! ``` /etc/ppp# grep -v '^#' pptpd-options | sed '/^$/d' name pptpd refuse-pap refuse-chap refuse-mschap...
Just looked at this issue briefly. This seems to be a browser specific issue with the newer HTML field of type "datetime-local". Firefox, Safari, Chrome, Edge and IE have implemented...