CVE-2005-2534

Name of the Vulnerable Software and Affected Versions OpenVPN versions prior to 2.0.1

Description A race condition issue exists that can cause a denial of service, specifically a server crash, when multiple clients with the same client certificate establish simultaneous TCP connections. This issue can be exploited remotely. Multiple vulnerabilities in the OpenVPN package may lead to disruption of protected information availability.

Recommendations For versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue. As a temporary workaround, consider disabling the simultaneous TCP connections feature or restricting access to the OpenVPN server until the update is applied.