Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:MISC:OPENVPN-DOS
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	OpenVPN P_CONTROL Denial Of Service
Release Date	2017/06/08
Update Number	2917
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: OpenVPN P_CONTROL Denial Of Service

This signature detects attempts to exploit a known vulnerability in OpenVPN. A remote, unauthenticated attacker can exploit this vulnerability to cause the OpenVPN server program to terminate, resulting in a denial-of-service condition.

Extended Description

OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.

Affected Products

Openvpn openvpn 2.3.12
Openvpn openvpn 2.3.13
Openvpn openvpn 2.3.14
Openvpn openvpn 2.4.0
Openvpn openvpn 2.4.1

References

CVE: CVE-2017-7478

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: OpenVPN P_CONTROL Denial Of Service

Extended Description

Affected Products

References