19 matches found
CVE-2025-11955 Incorrect validation of OCSP certificates in TheGreenBow VPN Client Windows Enterprise
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid...
CVE-2025-11955 Incorrect validation of OCSP certificates in TheGreenBow VPN Client Windows Enterprise
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid...
EUVD-2025-36160
Incorrect validation of OCSP certificates vulnerability in TheGreenBow VPN, versions 7.5 and 7.6. During the IKEv2 authentication step, the OCSP-enabled VPN client establishes the tunnel even if it does not receive an OCSP response or if the OCSP response signature is invalid...
TheGreenBow VPN 安全漏洞
TheGreenBow VPN is a VPN client software from the French company TheGreenBow. A security vulnerability exists in TheGreenBow VPN versions 7.5 and 7.6 that stems from incorrect OCSP certificate validation and could lead to the creation of insecure VPN tunnels...
CVE-2024-45750
An issue in TheGreenBow Windows Standard VPN Client 6.87.108 and older, Windows Enterprise VPN Client 6.87.109 and older, Windows Enterprise VPN Client 7.5.007 and older, Android VPN Client 6.4.5 and older VPN Client Linux 3.4 and older, VPN Client MacOS 2.4.10 and older allows a remote attacker ...
CVE-2023-47267
An issue discovered in TheGreenBow Windows Enterprise Certified VPN Client 6.52, Windows Standard VPN Client 6.87, and Windows Enterprise VPN Client 6.87 allows attackers to gain escalated privileges via crafted changes to memory mapped file...
PT-2024-31747 · Thegreenbow · Thegreenbow Windows Standard Vpn Client +4
Name of the Vulnerable Software and Affected Versions: TheGreenBow Windows Standard VPN Client versions 6.87.108 and older TheGreenBow Windows Enterprise VPN Client versions 6.87.109 and older TheGreenBow Windows Enterprise VPN Client versions 7.5.007 and older TheGreenBow Android VPN Client...
CVE-2024-45750
Summary (CVE-2024-45750) : TheGreenBow VPN clients across platforms are affected by an issue that allows a remote attacker to execute arbitrary code during the IKEv2 authentication phase due to acceptance of malformed ECDSA signatures, leading to tunnel establishment. Affected products and versio...
CVE-2023-47267
An issue discovered in TheGreenBow Windows Enterprise Certified VPN Client 6.52, Windows Standard VPN Client 6.87, and Windows Enterprise VPN Client 6.87 allows attackers to gain escalated privileges via crafted changes to memory mapped file...
TheGreenBow VPN Client TGB File OpenScriptAfterUp Parameter Local Overflow
The remote Windows host contains TheGreenBow VPN client, an IPsec VPN client. The installed version of TheGreenBow VPN Client is earlier than 4.65.003 or is an unpatched instance of 4.65.003. As such, it is reportedly affected by a local stack based buffer overflow caused by a boundary error when...
TheGreenBow VPN Client privilege escalation
Buffer overflow on IOCTL processing in tgbvpn.sys...
TheGreenBow VPN Client Local Stack Overflow Vulnerability - Security Advisory - SOS-10-001
TheGreenBow VPN Client Local Stack Overflow Vulnerability - Security Advisory - SOS-10-001 Release Date. 21-Jan-2010 Vendor Notification Date. 11-Dec-2009 Product. TheGreenBow VPN Client Platform. Microsoft Windows Affected versions. 4.65.003, 4.51.001 verified and possibly others. Severity Ratin...
Null pointer dereference
The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a denial of service NULL pointer dereference and system crash via a crafted request to the 0x80000034 IOCTL, probably involving an input or output buffer size of 0...
TheGreenBow VPN Client tgbvpn.sys Local DoS Exploit
No description provided by source. Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COM Website: http://evilcry.netsons.org http://evilcodecave.blogspot.com http://evilcodecave.wordpress.com http://evilfingers.com http://malwareAnalytics.com under construction Release Date: 15/08/20...
TheGreenBow VPN Client - tgbvpn.sys Local Denial of Service
TheGreenBow VPN Client - tgbvpn.sys Local Denial of Service Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COM Website: http://evilcry.netsons.org http://evilcodecave.blogspot.com http://evilcodecave.wordpress.com http://evilfingers.com http://malwareAnalytics.com under constructi...
TheGreenBow VPN Client tgbvpn.sys DoS and Potential Local
Original Advisory Link: https://www.evilfingers.com/advisory/Advisory/TheGreenBowVPNClienttgbvpn.sysDoS.php ++++++++++++++++++++++++++++++++++++++++++++++++++++ -----------TheGreenBow VPN Client tgbvpn.sys DoS and Potential Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa'...
TheGreenBow VPN Client tgbvpn.sys Local DoS Exploit
Exploit for unknown platform in category dos / poc =================================================== TheGreenBow VPN Client tgbvpn.sys Local DoS Exploit =================================================== Author: Giuseppe 'Evilcry' Bonfa' Release Date: 15/08/2009...
TheGreenBow VPN Client - 'tgbvpn.sys' Local Denial of Service
Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COM Website: http://evilcry.netsons.org http://evilcodecave.blogspot.com http://evilcodecave.wordpress.com http://evilfingers.com http://malwareAnalytics.com under construction Release Date: 15/08/2009...
TheGreenBow VPN Denial Of Service
Original Advisory Link: https://www.evilfingers.com/advisory/Advisory/TheGreenBowVPNClienttgbvpn.sysDoS.php ++++++++++++++++++++++++++++++++++++++++++++++++++++ -----------TheGreenBow VPN Client tgbvpn.sys DoS and Potential Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa'...