← back
CVE-2005-3409

CVE-2005-3409

EPSS 2.5%
OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service (segmentation fault) by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://openvpn.net/changelog.htmlhttp://secunia.com/advisories/17376http://secunia.com/advisories/17447http://secunia.com/advisories/17452http://secunia.com/advisories/17480http://www.debian.org/security/2005/dsa-885http://www.gentoo.org/security/en/glsa/glsa-200511-07.xmlhttp://www.novell.com/linux/security/advisories/2005_25_sr.htmlhttp://www.osvdb.org/20416http://www.securityfocus.com/archive/1/415487http://www.securityfocus.com/bid/15270