Lucene search
HistoryAug 24, 2005 - 4:00 a.m.
CVE-2005-2534
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.015
Percentile
87.3%
Race condition in OpenVPN before 2.0.1, when --duplicate-cn is not enabled, allows remote attackers to cause a denial of service (server crash) via simultaneous TCP connections from multiple clients that use the same client certificate.
Affected configurations
Node
openvpnopenvpnMatch2.0
ORopenvpnopenvpnMatch2.0.1_rc1
ORopenvpnopenvpnMatch2.0.1_rc2
ORopenvpnopenvpnMatch2.0.1_rc3
ORopenvpnopenvpnMatch2.0.1_rc4
ORopenvpnopenvpnMatch2.0.1_rc5
ORopenvpnopenvpnMatch2.0.1_rc6
ORopenvpnopenvpnMatch2.0.1_rc7
ORopenvpnopenvpnMatch2.0_beta1
ORopenvpnopenvpnMatch2.0_beta2
ORopenvpnopenvpnMatch2.0_beta3
ORopenvpnopenvpnMatch2.0_beta4
ORopenvpnopenvpnMatch2.0_beta5
ORopenvpnopenvpnMatch2.0_beta6
ORopenvpnopenvpnMatch2.0_beta7
ORopenvpnopenvpnMatch2.0_beta8
ORopenvpnopenvpnMatch2.0_beta9
ORopenvpnopenvpnMatch2.0_beta10
ORopenvpnopenvpnMatch2.0_beta11
ORopenvpnopenvpnMatch2.0_beta12
ORopenvpnopenvpnMatch2.0_beta13
ORopenvpnopenvpnMatch2.0_beta15
ORopenvpnopenvpnMatch2.0_beta16
ORopenvpnopenvpnMatch2.0_beta17
ORopenvpnopenvpnMatch2.0_beta18
ORopenvpnopenvpnMatch2.0_beta19
ORopenvpnopenvpnMatch2.0_beta20
ORopenvpnopenvpnMatch2.0_beta28
ORopenvpnopenvpnMatch2.0_rc1
ORopenvpnopenvpnMatch2.0_rc2
ORopenvpnopenvpnMatch2.0_rc3
ORopenvpnopenvpnMatch2.0_rc4
ORopenvpnopenvpnMatch2.0_rc5
ORopenvpnopenvpnMatch2.0_rc6
ORopenvpnopenvpnMatch2.0_rc7
ORopenvpnopenvpnMatch2.0_rc8
ORopenvpnopenvpnMatch2.0_rc9
ORopenvpnopenvpnMatch2.0_rc10
ORopenvpnopenvpnMatch2.0_rc11
ORopenvpnopenvpnMatch2.0_rc12
ORopenvpnopenvpnMatch2.0_rc13
ORopenvpnopenvpnMatch2.0_rc14
ORopenvpnopenvpnMatch2.0_rc15
ORopenvpnopenvpnMatch2.0_rc16
ORopenvpnopenvpnMatch2.0_rc17
ORopenvpnopenvpnMatch2.0_rc18
ORopenvpnopenvpnMatch2.0_rc19
ORopenvpnopenvpnMatch2.0_rc20
ORopenvpnopenvpnMatch2.0_rc21
ORopenvpnopenvpnMatch2.0_test1
ORopenvpnopenvpnMatch2.0_test2
ORopenvpnopenvpnMatch2.0_test3
ORopenvpnopenvpnMatch2.0_test5
ORopenvpnopenvpnMatch2.0_test6
ORopenvpnopenvpnMatch2.0_test7
ORopenvpnopenvpnMatch2.0_test8
ORopenvpnopenvpnMatch2.0_test9
ORopenvpnopenvpnMatch2.0_test10
ORopenvpnopenvpnMatch2.0_test11
ORopenvpnopenvpnMatch2.0_test12
ORopenvpnopenvpnMatch2.0_test14
ORopenvpnopenvpnMatch2.0_test15
ORopenvpnopenvpnMatch2.0_test16
ORopenvpnopenvpnMatch2.0_test17
ORopenvpnopenvpnMatch2.0_test18
ORopenvpnopenvpnMatch2.0_test19
ORopenvpnopenvpnMatch2.0_test20
ORopenvpnopenvpnMatch2.0_test21
ORopenvpnopenvpnMatch2.0_test22
ORopenvpnopenvpnMatch2.0_test23
ORopenvpnopenvpnMatch2.0_test24
ORopenvpnopenvpnMatch2.0_test26
ORopenvpnopenvpnMatch2.0_test27
ORopenvpnopenvpnMatch2.0_test29
Related
debiancve
debiancve
CVE-2005-2534
2005-08-24 04:00:00
nessus
nessus
FreeBSD : openvpn -- multiple TCP clients connecting with the same certificate at the same time can crash the server (5ad3e437-e527-4514-b9ed-280b2ca1a8c9)
2006-05-13 00:00:00
Debian DSA-851-1 : openvpn - programming errors
2005-10-11 00:00:00
OpenVPN < 2.0.1 Multiple Vulnerabilities (Windows)
2019-05-17 00:00:00
ubuntucve
ubuntucve
CVE-2005-2534
2005-08-24 00:00:00
openvas
openvas
FreeBSD Ports: openvpn
2008-09-04 00:00:00
FreeBSD Ports: openvpn
2008-09-04 00:00:00
Debian: Security Advisory (DSA-851-1)
2008-01-17 00:00:00
cve
cve
CVE-2005-2534
2005-08-24 04:00:00
cvelist
cvelist
CVE-2005-2534
2005-08-24 04:00:00
freebsd
freebsd
altlinux
altlinux
Security fix for the ALT Linux 9 package openvpn version 2.0.2-alt1
2005-08-25 00:00:00
osv
osv
openvpn - denial of service
2005-10-09 00:00:00
debian
debian
[SECURITY] [DSA 851-1] New openvpn packages fix denial of service
2005-10-09 07:14:49
[SECURITY] [DSA 851-1] New openvpn packages fix denial of service
2005-10-09 07:14:49
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.015
Percentile
87.3%
Related for NVD:CVE-2005-2534