The US-CERT issued advisory warning users of a new dangerous 17-year-old remote code execution vulnerability affecting the pppd software. The vulnerability, tracked aswith CVSS Score 9.8, can be exploited by unauthenticated attackers to remotely execute arbitrary code on affected systems and take full control over them. The software is an implementation of Point-to-Point Protocol (PPP) that enables communication and data transfer between nodes, primarily used to establish internet links such as those over dial-up modems, DSL broadband connections.
Source: https://thehackernews.com/2020/03/ppp-daemon-vulnerability.html