CVE-2002-0873

Name of the Vulnerable Software and Affected Versions: l2tpd version 0.67

Description: The issue allows remote attackers to overwrite the vendor field by providing a long value in an attribute/value pair, which could be related to a buffer overflow.

Recommendations: For l2tpd version 0.67, consider restricting access to the attribute/value pair functionality until a patch is available. As a temporary workaround, avoid using long values in attribute/value pairs to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.