The vulnerability of the Ivanti Secure Access Client (formerly Pulse Secure Desktop Client)’s VPN server for corporate networks on Linux operating systems arises from an operation that goes beyond the buffer in memory. This allows a malicious user to execute arbitrary code with SYSTEM privileges.

The vulnerability of the Ivanti Secure Access Client formerly Pulse Secure Desktop Client for corporate networks’ VPN servers on Linux operating systems is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a attacker to execute...

CVE-2019-12578

A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v82 for Linux could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openvpnlauncher.64 binary is setuid root. This binary executes /opt/pia/openvpn-64/openvpn, passing the...

Fortinet FortiClient Linux SSLVPN build elevation of privilege vulnerability

Fortinet FortiClient Linux SSLVPN is a Linux-based VPN client for connecting to Fortinet devices. An elevation of privilege vulnerability exists in versions prior to Fortinet FortiClient Linux SSLVPN build 2313, which allows local users to gain privileges via the assistant/sabloid etuid program...

strongSwan Remote Code Execution Vulnerability

strongSwan is an open source IPsec-based VPN solution for Linux platforms maintained by Swiss software developer Andreas Steffen. The solution includes authentication mechanisms such as X.509 public key certificates, secure storage of private keys, and smart cards. A remote code execution...

Linux FreeS/WAN 2.01 VPN Detection

Binary data 3590.prm...