VYPR

Ipsec VPN Client

by Thegreenbow

CVEs (2)

  • CVE-2009-2918Aug 21, 2009
    risk 0.03cvss epss 0.01

    The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted request to the 0x80000034 IOCTL, probably involving an input or output buffer size of 0.

  • CVE-2010-0392Jan 26, 2010
    risk 0.00cvss epss 0.06

    Stack-based buffer overflow in vpnconf.exe in TheGreenBow IPSec VPN Client 4.51.001, 4.65.003, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a long OpenScriptAfterUp parameter in a policy (.tgb) file, related to "phase 2."