VYPR
Unrated severityNVD Advisory· Published Aug 4, 2008· Updated Jun 16, 2026

CVE-2008-3459

CVE-2008-3459

Description

Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted (1) lladdr and (2) iproute configuration directives, probably related to shell metacharacters.

Affected products

12
  • OpenVPN/OpenVPN12 versions
    cpe:2.3:a:openvpn:openvpn:2.1:beta-14:*:*:*:*:*:*+ 11 more
    • cpe:2.3:a:openvpn:openvpn:2.1:beta-14:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:beta-15:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:beta-16:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_1:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_2:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_3:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_4:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_5:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_6:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_7:*:*:*:*:*:*
    • cpe:2.3:a:openvpn:openvpn:2.1:rc_8:*:*:*:*:*:*
    • (no CPE)range: 2.1-beta14 through 2.1-rc8

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.