Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:MISC:OPENVPN-READKEY-BO
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	OpenVPN read_key Stack Based Buffer Overflow
Release Date	2017/10/13
Update Number	2999
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: OpenVPN read_key Stack Based Buffer Overflow

This signature detects attempts to exploit a known vulnerability in OpenVPN. Successful exploitation could result in the execution of arbitrary code in the security context of ROOT or SYSTEM.

Extended Description

OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution.

Affected Products

Openvpn openvpn 2.3.2
Openvpn openvpn 2.4.0
Openvpn openvpn 2.4.1
Openvpn openvpn 2.4.2
Openvpn openvpn 2.4.3

References

BugTraq: 101153
CVE: CVE-2017-12166

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: OpenVPN read_key Stack Based Buffer Overflow

Extended Description

Affected Products

References