Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft PPTP Buffer Overflow; VPNs Vulnerable

Posted by ryuzaki0 on from the no-rest-for-the-weary-MSCE dept.

An anonymous reader writes "According to this InfoWorld article, a buffer overflow exploit has been discovered for Microsoft's PPTP implementation, which leaves Microsoft VPN solutions vulnerable to exploit. This overflow was discovered by the German security firm Phion; they have posted more info on this page." We might as well throw in yet another remote exploit for FrontPage, too. No, not last week's remote exploits - these are new. Coincidentally, the front group Microsoft organized for the purpose of quashing bug disclosure (that is, reducing Microsoft's bad press) is just now getting underway.

2 of 338 comments (clear)

  1. Burned again by darnellmc · · Score: 0, Flamebait

    Grey hat hackers RULE!!!

  2. Why bother? by RealAlaskan · · Score: 0, Flamebait
    The bad thing about a crack which crashes an MS server is that no one will notice. Why bother?

    The great thing about MS software is that it keeps your downtime up and your uptime down. Constant problems are a great way to show management just how essential all the sysadmins are. This is the secret of MS's success.

    As Foghorn Leghorn would say: ``That's a joke, I say, that's a joke, son.''

    --
    See what I've been reading.