CVE-2008-3459 Information

Description

Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8 when running on non-Windows systems allows remote servers to execute arbitrary commands via crafted (1) lladdr and (2) iproute configuration directives probably related to shell metacharacters.

Reference

http://openvpn.net/index.php/documentation/change-log/changelog-21.html http://www.securityfocus.com/bid/30532 http://www.securitytracker.com/id?1020626 http://www.vupen.com/english/advisories/2008/2316 https://exchange.xforce.ibmcloud.com/vulnerabilities/44209