202028 Oct
Vigil@nce - OpenVPN: out-of-bounds memory reading via resolve_remote
Type
General News
Source
Globalsecuritymag
Summary

This bulletin was written by Vigil@nce : https://vigilance.fr/offer/Computer... Consequences: data reading, denial of service on service, denial of service on client. An attacker can force a read at an invalid address via resolve_remote() of OpenVPN, in order to trigger a denial of service, or to obtain sensitive information.

Classifications
  • Security
  • Healthcare
  • General Healthcare
  • Security Software
  • Data Management