5 matches found
OpenVPN Memory Double Release Vulnerability
OpenVPN is a software package from the American company OpenVPN for creating encrypted tunnels for Virtual Private Networks VPNs, which uses the OpenSSL library to encrypt data and control information, and allows created VPNs to be authenticated using public keys, electronic certificates, or...
CVE-2018-9336
openvpnserv.exe aka the interactive service helper in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other...
CVE-2018-9336
openvpnserv.exe aka the interactive service helper in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other...
CVE-2018-9336
OpenVPN 2.4.x prior to 2.4.6 is affected by CVE-2018-9336 due to a double-free in the interactive service helper (openvpnserv.exe). A local attacker can trigger memory corruption leading to denial of service and possibly privilege escalation. The fix is in OpenVPN 2.4.6 and later; upgrading to th...
CVE-2018-9336
openvpnserv.exe aka the interactive service helper in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other...