CVE-2006-1629

Currently unrated

Key Information:

Vendor: Openvpn
Status: Openvpn; Openvpn Access Server
Vendor: CVE Published:; 6 April 2006

Summary

OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LD_PRELOAD environment variable.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25667

vdb-entryx_refsource_XF

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRIVA

http://www.vupen.com/english/advisories/2006/1261

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Apr 6, 2006
Vulnerability Reserved
Apr 5, 2006