CVE-2026-48131 VPND IKE Fragment Reassembly - Heap Out-of-Bounds Write via Sequence Number Zero

The VPN service may mishandle an unexpected IKE fragment value received on the IKE port 500/UDP during the early stage of a connection attempt. This can cause the service to terminate unexpectedly, resulting in denial of service temporary disruption of VPN-related functionality...

EUVD-2005-1346

Malware in sbrugna...

EUVD-2007-0750

Malware in sbrugna...

EUVD-2025-3677

Malicious code in bioql PyPI...

CVE-2025-24356 UDP traffic amplification via fastd's fast reconnect feature

fastd is a VPN daemon which tunnels IP packets and Ethernet frames over UDP. When receiving a data packet from an unknown IP address/port combination, fastd will assume that one of its connected peers has moved to a new address and initiate a reconnect by sending a handshake packet. This "fast...

Fortinet FortiOS < 5.6.13 / 6.0 < 6.0.11 / 6.1 < 6.2.5 / 6.3 < 6.4.2 Heap Buffer overflow (FG-IR-20-082)

The remote host is running a version of FortiOS prior to 5.6.13, 6.0 prior to 6.0.11, 6.1 prior to 6.2.5, or 6.3 prior to 6.4.2. It is, therefore, affected by a buffer overflow in the Link Control Protocol that could allow an authenticated remote attacker to crash the SSL VPN daemon and could be...

CVE-2007-6276

The acceptconnections function in the virtual private network daemon vpnd in Apple Mac OS X 10.5 before 10.5.4 allows remote attackers to cause a denial of service divide-by-zero error and daemon crash via a crafted load balancing packet to UDP port 4112...

Format string

Format string vulnerability in the VPN daemon vpnd in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter...

CVE-2007-0753

Format string vulnerability in the VPN daemon vpnd in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter...

CVE-2007-0753

Format string vulnerability in the VPN daemon vpnd in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter...

CVE-2007-0753

CVE-2007-0753 affects Apple Mac OS X VPND (VPN daemon) on affected platforms (OS X Server 10.4.9 and earlier; 10.3.9 referenced). The vulnerability is a local format-string flaw in vpnd triggered by the -i parameter, where untrusted input is passed into a format function, and vpnd runs with setui...

CVE-2005-1343

CVE-2005-1343: Mac OS X vpnd vulnerability. A stack-based buffer overflow in the VPN daemon (vpnd) before 10.3.9 allows a local, authenticated user to execute arbitrary code with root privileges by supplying a long -i Server_id argument. This affects the vpnd component and is triggered when Serve...

CVE-2005-1343

Stack-based buffer overflow in the VPN daemon vpnd for Mac OS X before 10.3.9 allows local users to execute arbitrary code via a long -i Serverid argument...

[Full-disclosure] Local root vuln in VPN daemon on MacOS X

Local root vulnerability in vpnd on MacOS X = 10.3.9 ----------------------------------------------------- Overview -------- There exists a local root exploitable stack based buffer overflow in the VPN daemon shipping with MacOS X. This bug can be easily exploited to gain root access. This...

CVE-2005-1343

Stack-based buffer overflow in the VPN daemon vpnd for Mac OS X before 10.3.9 allows local users to execute arbitrary code via a long -i Serverid argument...