Stack-based buffer overflow in vpnconf.exe in TheGreenBow IPSec VPN Client 4.51.001, 4.65.003, and possibly other versions, allows user-assisted remote malicious users to execute arbitrary code via a long OpenScriptAfterUp parameter in a policy (.tgb) file, related to "phase 2."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
thegreenbow ipsec vpn client 4.51.001 |
||
thegreenbow ipsec vpn client 4.65.003 |