CVE Vulnerabilities

CVE-2010-3903

Published: Oct 14, 2010 | Modified: Nov 12, 2010
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
LOW

Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service (application crash) via a 404 HTTP status code.

Affected Software

Name Vendor Start Version End Version
Openconnect Infradead * 2.22 (including)
Openconnect Infradead 1.00 (including) 1.00 (including)
Openconnect Infradead 1.10 (including) 1.10 (including)
Openconnect Infradead 1.20 (including) 1.20 (including)
Openconnect Infradead 1.30 (including) 1.30 (including)
Openconnect Infradead 1.40 (including) 1.40 (including)
Openconnect Infradead 2.00 (including) 2.00 (including)
Openconnect Infradead 2.01 (including) 2.01 (including)
Openconnect Infradead 2.10 (including) 2.10 (including)
Openconnect Infradead 2.11 (including) 2.11 (including)
Openconnect Infradead 2.12 (including) 2.12 (including)
Openconnect Infradead 2.20 (including) 2.20 (including)
Openconnect Infradead 2.21 (including) 2.21 (including)
Openconnect Ubuntu karmic *
Openconnect Ubuntu lucid *
Openconnect Ubuntu maverick *
Openconnect Ubuntu upstream *

References