CVE-2014-8104
OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet.
Published at
2014-12-03T18:59Z
3432 days ago
Modified
2020-05-12T14:21Z
1446 days ago
CWE-399
Problem type
References
URL | Type |
---|---|
DSA-3084 http://www.debian.org/security/2014/dsa-3084 | DEBIAN |
community.openvpn.net https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b | CONFIRM |
USN-2430-1 http://www.ubuntu.com/usn/USN-2430-1 | UBUNTU |
openSUSE-SU-2014:1594 http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00008.html | SUSE |
advisories.mageia.org http://advisories.mageia.org/MGASA-2014-0512.html | CONFIRM |
MDVSA-2015:139 http://www.mandriva.com/security/advisories?name=MDVSA-2015:139 | MANDRIVA |
GET https://vulnerabilitydata.com/api/details/CVE-2014-8104
{ "id": "CVE-2014-8104", "published_date": "2014-12-03T18:59Z", "last_modified_date": "2020-05-12T14:21Z", "assigner": "secalert@redhat.com", "description": "OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet.", "references": [ { "url": "http://www.debian.org/security/2014/dsa-3084", "name": "DSA-3084", "refsource": "DEBIAN", "tags": [ "Third Party Advisory" ] }, { "url": "https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b", "name": "https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.ubuntu.com/usn/USN-2430-1", "name": "USN-2430-1", "refsource": "UBUNTU", "tags": [ "Third Party Advisory" ] }, { "url": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00008.html", "name": "openSUSE-SU-2014:1594", "refsource": "SUSE", "tags": [ "Third Party Advisory" ] }, { "url": "http://advisories.mageia.org/MGASA-2014-0512.html", "name": "http://advisories.mageia.org/MGASA-2014-0512.html", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ] }, { "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:139", "name": "MDVSA-2015:139", "refsource": "MANDRIVA", "tags": [ "Broken Link" ] } ], "impact": { "baseMetricV2": { "cvssV2": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "SINGLE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.8 }, "severity": "MEDIUM", "exploitabilityScore": 8, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } }, "problem_type": "CWE-399" }