Openvpn

Openvpn

47 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.02%
  • Veröffentlicht 06.04.2006 22:04:00
  • Zuletzt bearbeitet 16.06.2026 22:23:20

OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LD_PRELOAD environment variable.

  • EPSS 2.5%
  • Veröffentlicht 02.11.2005 00:02:00
  • Zuletzt bearbeitet 16.06.2026 22:16:54

OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service (segmentation fault) by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler.

  • EPSS 3.48%
  • Veröffentlicht 01.11.2005 12:47:00
  • Zuletzt bearbeitet 16.06.2026 22:16:52

Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option.

  • EPSS 1.97%
  • Veröffentlicht 24.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:08

OpenVPN before 2.0.1, when running with "verb 0" and without TLS authentication, does not properly flush the OpenSSL error queue when a client fails certificate authentication to the server and causes the error to be processed by the wrong client, wh...

  • EPSS 0.97%
  • Veröffentlicht 24.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:09

Race condition in OpenVPN before 2.0.1, when --duplicate-cn is not enabled, allows remote attackers to cause a denial of service (server crash) via simultaneous TCP connections from multiple clients that use the same client certificate.

  • EPSS 0.68%
  • Veröffentlicht 24.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:09

OpenVPN before 2.0.1, when running in "dev tap" Ethernet bridging mode, allows remote authenticated clients to cause a denial of service (memory exhaustion) via a flood of packets with a large number of spoofed MAC addresses.

  • EPSS 2.74%
  • Veröffentlicht 24.08.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:15:09

OpenVPN before 2.0.1 does not properly flush the OpenSSL error queue when a packet can not be decrypted by the server, which allows remote authenticated attackers to cause a denial of service (client disconnection) via a large number of packets that ...