CVE-2014-8104
OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet.
Published at
2014-12-03T18:59Z
3432 days ago
Modified
2020-05-12T14:21Z
1446 days ago
CWE-399
Problem type
References
| URL | Type |
|---|---|
| DSA-3084 http://www.debian.org/security/2014/dsa-3084 | DEBIAN |
| community.openvpn.net https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b | CONFIRM |
| USN-2430-1 http://www.ubuntu.com/usn/USN-2430-1 | UBUNTU |
| openSUSE-SU-2014:1594 http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00008.html | SUSE |
| advisories.mageia.org http://advisories.mageia.org/MGASA-2014-0512.html | CONFIRM |
| MDVSA-2015:139 http://www.mandriva.com/security/advisories?name=MDVSA-2015:139 | MANDRIVA |
GET https://vulnerabilitydata.com/api/details/CVE-2014-8104
{
"id": "CVE-2014-8104",
"published_date": "2014-12-03T18:59Z",
"last_modified_date": "2020-05-12T14:21Z",
"assigner": "secalert@redhat.com",
"description": "OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet.",
"references": [
{
"url": "http://www.debian.org/security/2014/dsa-3084",
"name": "DSA-3084",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b",
"name": "https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.ubuntu.com/usn/USN-2430-1",
"name": "USN-2430-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00008.html",
"name": "openSUSE-SU-2014:1594",
"refsource": "SUSE",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://advisories.mageia.org/MGASA-2014-0512.html",
"name": "http://advisories.mageia.org/MGASA-2014-0512.html",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:139",
"name": "MDVSA-2015:139",
"refsource": "MANDRIVA",
"tags": [
"Broken Link"
]
}
],
"impact": {
"baseMetricV2": {
"cvssV2": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:C",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.8
},
"severity": "MEDIUM",
"exploitabilityScore": 8,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
},
"problem_type": "CWE-399"
}