Description

Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option.

Remediation

References

CVE-2005-3393

Related Vulnerabilities

WordPress Plugin Job Manager Security Bypass (0.7.25)

Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-40316)

Oracle Database Server CVE-2006-3702 Vulnerability (CVE-2006-3702)

Envoy Proxy CVE-2023-27496 Vulnerability (CVE-2023-27496)

Ruby Improper Restriction of XML External Entity Reference Vulnerability (CVE-2021-28965)

Severity

High

Classification

CVE-2005-3393

Tags

Missing Update Known Vulnerabilities