WEB APPLICATION VULNERABILITIES Standard & Premium

OpenVPN AS Other Vulnerability (CVE-2006-2229)

Description

OpenVPN 2.0.7 and earlier, when configured to use the --management option with an IP that is not 127.0.0.1, uses a cleartext password for TCP sessions to the management interface, which might allow remote attackers to view sensitive information or cause a denial of service.

Remediation

References

Related Vulnerabilities

WordPress Plugin WordPress WP-Advanced-Search Remote Code Execution (3.3.3)

WordPress Plugin A. Gallery TimThumb Arbitrary File Upload (0.9rev378511)

PostgreSQL Improper Input Validation Vulnerability (CVE-2014-0066)

IBM RTC Inadequate Encryption Strength Vulnerability (CVE-2020-4965)

Dolphin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3728)

Severity

Medium

Classification

CVE-2006-2229

Tags

Missing Update Known Vulnerabilities