The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://openvpn.net/index.php/documentation/change-log/changelog-21.html http://www.vuxml.org/freebsd/c61ca9cb-64c3-11dd-954d-006097bcc5f4.html

The following package is affected: openvpn-devel CVE-2008-3459 Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted (1) lladdr and (2) iproute configuration directives, probably related to shell metacharacters.