Anyone know when this will be addressed in Endian firewall:
OpenVPN -- OpenVPN Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted (1) "lladdr" and (2) "iproute" configuration directives, probably related to shell metacharacters. Discovered: 2008-08-04 CVSS Score: 10.0 Source & Patch Info: CVE-2008-3459: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3459 OTHER-REF: http://openvpn.net/index.php/documentation/change-log/changelog-21.html ---------------------------------------------------- Virus Free -- Scanned By MailSecurity ---------------------------------------------------- This email message is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message. Any views expressed in this message are those of the author, except where the sender specifically states them to be the views of BBG, Inc. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
