2433 matches found
CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
CVE-2006-1629
OpenVPN CVE-2006-1629 affects OpenVPN client versions 2.0–2.0.5. A remote server can exploit this by pushing an LD_PRELOAD environment variable via setenv, enabling arbitrary code execution on the client. Root cause: environment-variable handling in client startup allowing injection. Impact: remo...
CVE-2006-1629
OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LDPRELOAD environment variable...
Security fix for the ALT Linux 9 package openvpn version 2.0.6-alt1
April 6, 2006 Nikolay A. Fetisov 2.0.6-alt1 - New version 2.0.6 -- Security fixes for CVE-2005-3393, CVE-2005-3409, CVE-2006-1629 -- several minor bug fixes and improvements, see ChangeLog for details - Adding README.ALT - Updating init.d script - Building and packaging plugins...
OpenVPN VPN client code execution
Server can transmit environment variables to the clients, including e.g. LDPRELOAD...
[SA19531] OpenVPN LD_PRELOAD Environment Variable Pushing Vulnerability
TITLE: OpenVPN LDPRELOAD Environment Variable Pushing Vulnerability SECUNIA ADVISORY ID: SA19531 VERIFY ADVISORY: http://secunia.com/advisories/19531/ CRITICAL: Less critical IMPACT: System access WHERE: From remote SOFTWARE: OpenVPN 2.x http://secunia.com/product/5568/ DESCRIPTION: Hendrik Weime...
openvpn -- LD_PRELOAD code execution on client through malicious or compromised server
Hendrik Weimer reports: OpenVPN clients are a bit too generous when accepting configuration options from a server. It is possible to transmit environment variables to client-side shell scripts. There are some filters in place to prevent obvious nonsense, however they don't catch the good old...
Mandrake Linux Security Advisory : openvpn (MDKSA-2005:206-1)
Two Denial of Service vulnerabilities exist in OpenVPN. The first allows a malicious or compromised server to execute arbitrary code on the client CVE-2005-3393. The second DoS can occur if when in TCP server mode, OpenVPN received an error on accept2 and the resulting exception handler causes a...
[SECURITY] [DSA 885-1] New OpenVPN packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 885-1 [email protected] http://www.debian.org/security/ Martin Schulze November 7th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 885-1] New OpenVPN packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 885-1 [email protected] http://www.debian.org/security/ Martin Schulze November 7th, 2005 http://www.debian.org/security/faq -...
DSA-885-1 openvpn - several
Bulletin has no description...
GLSA-200511-07 : OpenVPN: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200511-07 OpenVPN: Multiple vulnerabilities The OpenVPN client contains a format string bug in the handling of the foreignoption in options.c. Furthermore, when the OpenVPN server runs in TCP mode, it may dereference a NULL pointe...
OpenVPN: Multiple vulnerabilities
Background OpenVPN is a multi-platform, full-featured SSL VPN solution. Description The OpenVPN client contains a format string bug in the handling of the foreignoption in options.c. Furthermore, when the OpenVPN server runs in TCP mode, it may dereference a NULL pointer under specific error...
CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...
DEBIAN-CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...
CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...
CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...
CVE-2005-3409
OpenVPN 2.x is affected by CVE-2005-3409 (pre-2.0.4). The issue is a denial-of-service caused by forcing accept() to return an error, which leads to a NULL pointer dereference in the exception handler, potentially crashing the service. The vulnerability affects OpenVPN servers operating in TCP mo...
CVE-2005-3409
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service segmentation fault by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler...