Lucene search
HistoryAug 04, 2008 - 7:41 p.m.
CVE-2008-3459
cve
openvpn
vulnerability
nvd
remote execution
command injection
security issue
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted (1) lladdr and (2) iproute configuration directives, probably related to shell metacharacters.
Affected configurations
Node
openvpnopenvpnMatch2.1beta-14
ORopenvpnopenvpnMatch2.1beta-15
ORopenvpnopenvpnMatch2.1beta-16
ORopenvpnopenvpnMatch2.1rc_1
ORopenvpnopenvpnMatch2.1rc_2
ORopenvpnopenvpnMatch2.1rc_3
ORopenvpnopenvpnMatch2.1rc_4
ORopenvpnopenvpnMatch2.1rc_5
ORopenvpnopenvpnMatch2.1rc_6
ORopenvpnopenvpnMatch2.1rc_7
ORopenvpnopenvpnMatch2.1rc_8
| CPE | Name | Operator | Version |
|---|---|---|---|
| openvpn:openvpn | openvpn | eq | 2.1 |
Related
openvas
openvas
OpenVPN Client Remote Code Execution Vulnerability
2008-08-22 00:00:00
FreeBSD Ports: openvpn-devel
2008-09-04 00:00:00
OpenVPN Client Remote Code Execution Vulnerability
2008-08-22 00:00:00
debiancve
debiancve
CVE-2008-3459
2008-08-04 19:41:00
prion
prion
Design/Logic Flaw
2008-08-04 19:41:00
redhatcve
redhatcve
CVE-2008-3459
2019-10-04 20:22:16
nvd
nvd
CVE-2008-3459
2008-08-04 19:41:00
cvelist
cvelist
CVE-2008-3459
2008-08-04 19:00:00
nessus
nessus
freebsd
freebsd
openvpn-devel -- arbitrary code execution
2008-07-31 00:00:00
ubuntucve
ubuntucve
CVE-2008-3459
2008-08-04 00:00:00
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Related for CVE-2008-3459