Lucene search

K
freebsdFreeBSD1986449A-8B74-40FA-B7CC-0D8DEF8AAD65
HistoryJul 27, 2005 - 12:00 a.m.

openvpn -- denial of service: malicious authenticated "tap" client can deplete server virtual memory

2005-07-2700:00:00
vuxml.freebsd.org
15

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.003

Percentile

68.1%

James Yonan reports:

A malicious [authenticated] client in β€œdev tap”
ethernet bridging mode could theoretically flood the server
with packets appearing to come from hundreds of thousands
of different MAC addresses, causing the OpenVPN process to
deplete system virtual memory as it expands its internal
routing table.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchopenvpn<Β 2.0.1UNKNOWN

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.003

Percentile

68.1%

Related for 1986449A-8B74-40FA-B7CC-0D8DEF8AAD65