Download
| Alert*
oval:org.secpod.oval:def:71928
The host is installed with OpenVPN 2.1.28 and is prone to an unquoted search path vulnerability. A flaw is present in the application, which fails to properly handle a crafted program.exe file in the %SYSTEMDRIVE% folder. Successful exploitation allows local users to gain privileges. oval:org.secpod.oval:def:71927 The host is installed with OpenVPN before 2.3.18 or 2.4.x before 2.4.4 and is prone to an out of bounds write vulnerability. A flaw is present in the application, which fails to properly handle an issue in key-method 1. Successful exploitation could possibly result in code execution. oval:org.secpod.oval:def:41169 The host is installed with OpenVPN versions before 2.3.17 or 2.4.x before 2.4.3 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to cause denial of service. oval:org.secpod.oval:def:41168 The host is installed with OpenVPN less than 2.3.17 or 2.4.x before 2.4.3 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle a certificate with an embedded NULL character. Successful exploitation could allow attackers to cause denial ... oval:org.secpod.oval:def:40643 The host is installed with OpenVPN version greater than or equal to 2.3.12 and less than 2.3.15 or 2.4.x before 2.4.2 and is prone to Denial of service vulnerability. A flaw is present in the application, which fails to properly handle the unspecified vector. Successful exploitation could allow atta ... oval:org.secpod.oval:def:40644 The host is installed with OpenVPN versions before 2.3.15 or 2.4.x before 2.4.2 and is prone to Denial of service vulnerability. A flaw is present in the application, which fails to properly handle unspecified vector. Successful exploitation could allow attackers to cause denial of service. oval:org.secpod.oval:def:16230 The host is installed with OpenVPN 2.3.0 and earlier are prone to information disclosure vulnerability. The flaw is present in the application, which fails to properly handle the openvpn_decrypt function in crypto.c. Successful exploitation allows remote attackers to cause timing attack involving an ... oval:org.mitre.oval:def:12196 OpenVPN (32 bit) is installed oval:org.secpod.oval:def:27127 The host is installed with 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, or 2.3.x before 2.3.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a small control channel packet. Successful exploitation allows remote attackers to cr ... oval:org.secpod.oval:def:41170 The host is installed with OpenVPN versions before 2.3.17 or 2.4.x before 2.4.3 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow attackers to cause denial-of-service and/or p ... oval:org.secpod.oval:def:41171 The host is installed with OpenVPN versions before 2.3.17 or 2.4.x before 2.4.3 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle malformed IPv6 packet. Successful exploitation could allow attackers to cause denial of service. oval:org.secpod.oval:def:45331 The host is installed with OpenVPN 2.4.x before 2.4.6 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle malformed requests to the interactive service helper. Successful exploitation could allow attackers to cause denial of service t ... oval:org.secpod.oval:def:81885 The host is installed with OpenVPN 2.1.0 before 2.4.12 or 2.5.x before 2.5.6 and is prone to an authentication bypass vulnerability. A flaw is present in the application, which fails to properly handle servers configured with deferred authentication replies. On Successful exploitation, attacker can ... oval:org.secpod.oval:def:94765 The host is installed with OpenVPN 2.6.x through 2.6.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a division by zero when --fragment is used. Successful exploitation could allow attackers to trigger a divide by zero behavio ... oval:org.secpod.oval:def:94766 The host is installed with OpenVPN 2.6.x through 2.6.6 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to properly handle a send buffer after it has been free()d in some circumstances. Successful exploitation could allow attackers to lead to undefine ... oval:org.secpod.oval:def:36970 The host is installed with OpenVPN before 2.3.12 and is prone to an information disclosure vulnerability. The flaw is present in the application, which fails to properly handle the 64-bit block ciphers such as 3DES and Blowfish. Successful exploitation allows remote attackers to recover plaintext wh ... oval:org.secpod.oval:def:71926 The host is installed with OpenVPN before 2.4.11 or 2.5.x before 2.5.2 and is prone to an authentication bypass vulnerability. A flaw is present in the application, which fails to properly handle servers configured with deferred authentication. Successful exploitation could allow remote attackers to ... |