![[community profile]](https://www.dreamwidth.org/img/silk/identity/community.png){kind=small}
Миллион миллион миллион красных глаз ..
Jul. 3rd, 2017 10:16 pm![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
scif_yarOpenVPN has this week patched four vulnerabilities, including a critical remote code execution bug, a little more than a month after the results of two security audits of the open source VPN software were published.
The patches were released after private disclosures in May and June by researcher Guido Vranken of the Netherlands. Vranken said the vulnerabilities were not turned up in either audit, which were a combination of manual source code reviews and automated scanning; Vranken said he exclusively used a fuzzer to find these bugs
The most critical vulnerability, CVE-2017-7521, affects OpenVPN server side and could allow an authenticated hacker to run code on a compromised box.
https://threatpost.com/openvpn-patches-critical-remote-code-execution-vulnerability/126425/
Миллион миллион миллион красных глаз ..
The patches were released after private disclosures in May and June by researcher Guido Vranken of the Netherlands. Vranken said the vulnerabilities were not turned up in either audit, which were a combination of manual source code reviews and automated scanning; Vranken said he exclusively used a fuzzer to find these bugs
The most critical vulnerability, CVE-2017-7521, affects OpenVPN server side and could allow an authenticated hacker to run code on a compromised box.
https://threatpost.com/openvpn-patches-critical-remote-code-execution-vulnerability/126425/
Миллион миллион миллион красных глаз ..
