Description
Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option.
Remediation
References
Related Vulnerabilities
WordPress Plugin Job Manager Security Bypass (0.7.25)
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-40316)
Oracle Database Server CVE-2006-3702 Vulnerability (CVE-2006-3702)
Envoy Proxy CVE-2023-27496 Vulnerability (CVE-2023-27496)
Ruby Improper Restriction of XML External Entity Reference Vulnerability (CVE-2021-28965)