OpenVPN warns customers of CSRF bug in Access server desktop client

Minimalist · Jul 17, 2014

OpenVPN is advising users of its Desktop Client to upgrade as soon as possible to avoid attacks against a CSRF vulnerability that can allow remote code execution.

The vulnerability lies in a product that the company no longer supports and considers obsolete. An attacker could exploit the vulnerability if a user running a vulnerable version visits the attacker’s malicious site. Researchers at SEC Consult in Austria discovered the vulnerability and reported it to OpenVPN back in May.
Click to expand...

http://threatpost.com/openvpn-warns-customers-of-csrf-bug-in-access-server-desktop-client

Log in or Sign up

OpenVPN warns customers of CSRF bug in Access server desktop client

Minimalist Registered Member

Log in or Sign up

OpenVPN warns customers of CSRF bug in Access server desktop client

Minimalist Registered Member

Useful Searches