|Secunia||OpenVPN Denial of Service and Buffer Overflow Two Vulnerabilities|
|7th Apr, 2017 10:49|
User Since: -
System Score: -
Location: Copenhagen, DK
Multiple vulnerabilities have been reported in OpenVPN, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
1) An error related to port-share can potentially be exploited to cause a crash.
2) A boundary error when handling credentials in the auth-pam can be exploited to cause a stack-based buffer overflow via an overly long user name or password.
Successful exploitation of this vulnerability may allow execution of arbitrary code.
The vulnerabilities are reported in versions prior to 2.3.11.