ID CVE-2005-3393
Summary Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option.
References
Vulnerable Configurations
  • cpe:2.3:a:openvpn:openvpn:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:openvpn:openvpn:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:openvpn:openvpn:2.0_beta11:*:*:*:*:*:*:*
    cpe:2.3:a:openvpn:openvpn:2.0_beta11:*:*:*:*:*:*:*
  • cpe:2.3:a:openvpn:openvpn_access_server:2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:openvpn:openvpn_access_server:2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:openvpn:openvpn_access_server:2.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:openvpn:openvpn_access_server:2.0.2:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 12-05-2020 - 14:21)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 15239
bugtraq 20051031 OpenVPN[v2.0.x]: foreign_option() formart string vulnerability.
confirm http://openvpn.net/changelog.html
debian DSA-885
gentoo GLSA-200511-07
openpkg OpenPKG-SA-2005.023
secunia
  • 17376
  • 17447
  • 17452
  • 17480
suse SUSE-SR:2005:025
vupen ADV-2005-2255
Last major update 12-05-2020 - 14:21
Published 01-11-2005 - 12:47
Last modified 12-05-2020 - 14:21
Back to Top