CVE-2017-7478

Related Files

OpenVPN 2.4.0 Denial Of Service

Posted May 12, 2017

Authored by QuarksLab

OpenVPN version 2.4.0 suffers from an unauthenticated denial of service vulnerability.

tags | exploit, denial of service

advisories | CVE-2017-7478

SHA-256 | 1e82be24c77aa6afaba0b639870610f41e593ffc6fe941430118a5d799c598c6

Download | Favorite | View

Ubuntu Security Notice USN-3284-1

Posted May 11, 2017

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3284-1 - It was discovered that OpenVPN improperly triggered an assert when receiving an oversized control packet in some situations. A remote attacker could use this to cause a denial of service. It was discovered that OpenVPN improperly triggered an assert when packet ids rolled over. An authenticated remote attacker could use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2017-7478, CVE-2017-7479

SHA-256 | d0323cbce6c72f6e323f9f5f4a6bca483302ed4b2d91ef985a627a4d571e8433

Download | Favorite | View