OpenVPN Servers Vulnerable to Shellshock

Status
Not open for further replies.

Exterminator

Community Manager
Thread author
Verified
Staff Member
Well-known
Oct 23, 2012
12,527
Servers with OpenVPN open-source software package for running connections through a virtual private network for security reasons, can be abused by leveraging the Shellshock bug in Bash command-line tool for Linux.

OpenVPN basically allows the creation of a tunnel between the client and a secure server that intermediates the connection to the intended target. It relies on a custom security protocol using SSL/TLS for exchanging the encryption keys.

Compromising these servers can happen because the software includes configuration options that permit calling custom commands during the tunnel session.

Fredrik Strömberg, co-founder of Swedish VPN company Mullvad, says in a post that many of the commands called already have the variables set and in some cases they can be controlled by the client.

“One option used for username+password authentication is "auth-user-pass-verify". If the called script uses a vulnerable shell, the client simply delivers the exploit and payload by setting the username,” he adds.

The researcher made the discovery last week and contacted the OpenVPN maintainers. Providers of VPN services using this package can avoid the Shellshock trouble by making sure that Bash is not used for running scripts.

Another way to guard against a possible compromise is to apply the existent patch for Bash. Florian Weimer created a fix for the issue, which appears to lock most of the doors for exploiting the 22-year-old glitch in Bash.

After the original Shellshock vulnerability, five others followed after attempts to provide a patch failed; the last two have not been publicly disclosed yet.
 
ا

الشمس

for every positive there is a negative.

while vpn gives you anonymity & privacy after reading this article it seems vpn can leave you unguarded.

from virtual private network to vulnerable private network.
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top