Short Name |
APP:MISC:OPENVPN-READKEY-BO |
---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
OpenVPN read_key Stack Based Buffer Overflow |
Release Date |
2017/10/13 |
Update Number |
2999 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in OpenVPN. Successful exploitation could result in the execution of arbitrary code in the security context of ROOT or SYSTEM.
OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution.