|
|
CVE Reference: CVE-2005-2532 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-2532 |
|
|
Description: OpenVPN before 2.0.1 does not properly flush the OpenSSL error queue when a packet can not be decrypted by the server, which allows remote authenticated attackers to cause a denial of service (client disconnection) via a large number of packets that can not be decrypted. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA16463 Secunia Advisory: SA17103 MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2005:145 DEBIAN http://www.debian.org/security/2005/dsa-851 CONFIRM http://openvpn.net/changelog.html BID 14607 |
|
| Return to the previous page. |
