Lucene search

MitreCVELIST:CVE-2005-3393

HistoryNov 01, 2005 - 11:00 a.m.

CVE-2005-3393

2005-11-0111:00:00

mitre

www.cve.org

AI Score

7.4

Confidence

Low

EPSS

0.024

Percentile

90.0%

JSON

Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option.

References

marc.info/?l=bugtraq&m=113081023121059&w=2

openvpn.net/changelog.html

secunia.com/advisories/17376

secunia.com/advisories/17447

secunia.com/advisories/17452

secunia.com/advisories/17480

www.debian.org/security/2005/dsa-885

www.gentoo.org/security/en/glsa/glsa-200511-07.xml

www.novell.com/linux/security/advisories/2005_25_sr.html

www.securityfocus.com/archive/1/415487

www.securityfocus.com/bid/15239

www.vupen.com/english/advisories/2005/2255