cbcvebase.
CVE-2002-1214
published 2002-10-28

CVE-2002-1214: Buffer overflow in Microsoft PPTP Service on Windows XP and Windows 2000 allows remote attackers to cause a denial of service (hang) and possibly execute…

PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
50.65%
98.8th percentile
Buffer overflow in Microsoft PPTP Service on Windows XP and Windows 2000 allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via a certain PPTP packet with malformed control data.

Detection & IOCsextracted from sources · hover to see the quote

port1723/tcp
  • Detect malformed PPTP control data packets targeting Windows PPTP RAS servers (TCP/1723); abnormal PPTP Control Data packets can trigger a kernel buffer overflow resulting in BSOD.
  • Monitor for unexpected system hangs or BSODs on Windows 2000/XP hosts running PPTP RAS services following inbound PPTP connections.
  • ·Affected platforms are limited to Windows 2000 SP0–SP3 and Windows XP SP0–SP1 running PPTP Remote Access Services; patched or later service-pack systems are not affected.
  • ·The Metasploit module is auxiliary/DoS only; while arbitrary code execution may be theoretically possible, it has not been demonstrated by this module.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.