Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-885-1
HistoryNov 07, 2005 - 12:00 a.m.

openvpn - several

2005-11-0700:00:00
Google
osv.dev
6

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.093 Low

EPSS

Percentile

94.7%

JSON

Several vulnerabilities have been discovered in OpenVPN, a free
virtual private network daemon. The Common Vulnerabilities and
Exposures project identifies the following problems:

  • CVE-2005-3393
    A format string vulnerability has been discovered that could allow
    arbitrary code to be executed on the client.
  • CVE-2005-3409
    A NULL pointer dereferencing has been discovered that could be
    exploited to crash the service.

The old stable distribution (woody) does not contain openvpn packages.

For the stable distribution (sarge) these problems have been fixed in
version 2.0-1sarge2.

For the unstable distribution (sid) these problems have been fixed in
version 2.0.5-1.

We recommend that you upgrade your openvpn package.

CPENameOperatorVersion
openvpneq2.0-1
openvpneq2.0-1sarge1

Related

nessus 7
debian 2
openvas 8
gentoo 1
altlinux 1
debiancve 2
nvd 2
ubuntucve 2
cvelist 2
freebsd 2
cve 2
nessus
nessus
GLSA-200511-07 : OpenVPN: Multiple vulnerabilities
2005-11-07 00:00:00
Debian DSA-885-1 : openvpn - several vulnerabilities
2006-10-14 00:00:00
Mandrake Linux Security Advisory : openvpn (MDKSA-2005:206-1)
2006-01-15 00:00:00
debian
debian
[SECURITY] [DSA 885-1] New OpenVPN packages fix several vulnerabilities
2005-11-07 09:57:19
[SECURITY] [DSA 885-1] New OpenVPN packages fix several vulnerabilities
2005-11-07 09:57:19
openvas
openvas
Gentoo Security Advisory GLSA 200511-07 (OpenVPN)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200511-07 (OpenVPN)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-885-1)
2008-01-17 00:00:00
gentoo
gentoo
OpenVPN: Multiple vulnerabilities
2005-11-06 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openvpn version 2.0.6-alt1
2006-04-06 00:00:00
debiancve
debiancve
CVE-2005-3409
2005-11-02 00:02:00
CVE-2005-3393
2005-11-01 12:47:00
nvd
nvd
CVE-2005-3409
2005-11-02 00:02:00
CVE-2005-3393
2005-11-01 12:47:00
ubuntucve
ubuntucve
CVE-2005-3409
2005-11-02 00:00:00
CVE-2005-3393
2005-11-01 00:00:00
cvelist
cvelist
CVE-2005-3409
2005-11-02 00:00:00
CVE-2005-3393
2005-11-01 11:00:00
freebsd
freebsd
openvpn -- potential denial-of-service on servers in TCP mode
2005-11-01 00:00:00
openvpn -- arbitrary code execution on client through malicious or compromised server
2005-10-31 00:00:00
cve
cve
CVE-2005-3409
2005-11-02 00:02:00
CVE-2005-3393
2005-11-01 12:47:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.093 Low

EPSS

Percentile

94.7%

JSON
Related for OSV:DSA-885-1
nessus7debian2openvas8gentoo1altlinux1debiancve2nvd2ubuntucve2cvelist2freebsd2cve2