Back to search
CVE-2005-2532
Published: Aug 24, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
OpenVPN before 2.0.1 does not properly flush the OpenSSL error queue when a packet can not be decrypted by the server, which allows remote authenticated attackers to cause a denial of service (client disconnection) via a large number of packets that can not be decrypted.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
17103
third-party-advisory
x_refsource_SECUNIA
http://openvpn.net/changelog.html
x_refsource_CONFIRM
MDKSA-2005:145
vendor-advisory
x_refsource_MANDRIVA
DSA-851
vendor-advisory
x_refsource_DEBIAN
14607
vdb-entry
x_refsource_BID
16463
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now