17-Yr-Old RCE Flaw Can Hack Several Linux Systems
1 min read
Mar 09, 2020
The US-CERT has issued a security advisory warning users of a 17-year-old critical Remote Code Execution (RCE) vulnerability that affects PPP (Point to Point Protocol Daemon) daemon software implemented in almost all Linux based operating systems.
The flaw, dubbed as CVE-2020-8597 with a 9.3 CVE score, was discovered by an IOActive security researcher, Ilja Van Sprundel.
The pppd (Point to Point Protocol Daemon) software is an implementation of Point-to-Point Protocol, which allows the communication and transfer of data between nodes, and is mainly used in the establishment of internet links over dial-up modems, DSL connections, and many other types of point-to-point links includingVirtual Private Networks (VPN)such as Point to Point Tunneling Protocol (PPTP).
The link for this article located at Techworm is no longer available.
Related Articles
1 - 0 min read
Hacked VMs Reveal New Attack Risks
1 - 0 min read
Growth in Open Source Use Among Businesses Analyzed
1 - 0 min read
SPDX 3.0 Revolutionizes Software Management & Security
