CVE-2005-2532

Name of the Vulnerable Software and Affected Versions OpenVPN versions prior to 2.0.1

Description The issue allows remote authenticated attackers to cause a denial of service, specifically client disconnection, by sending a large number of packets that cannot be decrypted. This is due to OpenVPN's failure to properly flush the OpenSSL error queue when a packet cannot be decrypted by the server. Multiple vulnerabilities in the OpenVPN package may lead to disruption of protected information availability, and exploitation can be carried out remotely.

Recommendations For versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue. As a temporary workaround, consider restricting the number of undecryptable packets that can be sent to the server to minimize the risk of exploitation.