2376 matches found
CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
Code injection
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
DEBIAN-CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
CVE-2006-1629
OpenVPN CVE-2006-1629 affects OpenVPN client versions 2.0–2.0.5. A remote server can exploit this by pushing an LD_PRELOAD environment variable via setenv, enabling arbitrary code execution on the client. Root cause: environment-variable handling in client startup allowing injection. Impact: remo...
CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
Security fix for the ALT Linux 9 package openvpn version 2.0.6-alt1
April 6, 2006 Nikolay A. Fetisov 2.0.6-alt1 - New version 2.0.6 -- Security fixes for CVE-2005-3393, CVE-2005-3409, CVE-2006-1629 -- several minor bug fixes and improvements, see ChangeLog for details - Adding README.ALT - Updating init.d script - Building and packaging plugins...
[SA19531] OpenVPN LD_PRELOAD Environment Variable Pushing Vulnerability
TITLE: OpenVPN LDPRELOAD Environment Variable Pushing Vulnerability SECUNIA ADVISORY ID: SA19531 VERIFY ADVISORY: http://secunia.com/advisories/19531/ CRITICAL: Less critical IMPACT: System access WHERE: From remote SOFTWARE: OpenVPN 2.x http://secunia.com/product/5568/ DESCRIPTION: Hendrik Weime...
OpenVPN VPN client code execution
Server can transmit environment variables to the clients, including e.g. LDPRELOAD...
openvpn -- LD_PRELOAD code execution on client through malicious or compromised server
Hendrik Weimer reports: OpenVPN clients are a bit too generous when accepting configuration options from a server. It is possible to transmit environment variables to client-side shell scripts. There are some filters in place to prevent obvious nonsense, however they don't catch the good old...
Mandrake Linux Security Advisory : openvpn (MDKSA-2005:206-1)
Two Denial of Service vulnerabilities exist in OpenVPN. The first allows a malicious or compromised server to execute arbitrary code on the client CVE-2005-3393. The second DoS can occur if when in TCP server mode, OpenVPN received an error on accept2 and the resulting exception handler causes a...
[SECURITY] [DSA 885-1] New OpenVPN packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 885-1 [email protected] http://www.debian.org/security/ Martin Schulze November 7th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 885-1] New OpenVPN packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 885-1 [email protected] http://www.debian.org/security/ Martin Schulze November 7th, 2005 http://www.debian.org/security/faq -...
DSA-885-1 openvpn - several
Bulletin has no description...
GLSA-200511-07 : OpenVPN: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200511-07 OpenVPN: Multiple vulnerabilities The OpenVPN client contains a format string bug in the handling of the foreignoption in options.c. Furthermore, when the OpenVPN server runs in TCP mode, it may dereference a NULL pointe...
OpenVPN: Multiple vulnerabilities
Background OpenVPN is a multi-platform, full-featured SSL VPN solution. Description The OpenVPN client contains a format string bug in the handling of the foreignoption in options.c. Furthermore, when the OpenVPN server runs in TCP mode, it may dereference a NULL pointer under specific error...
CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...
CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...
DEBIAN-CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...