{"id":"CVE-2008-3459","details":"Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted (1) lladdr and (2) iproute configuration directives, probably related to shell metacharacters.","modified":"2026-04-10T03:40:01.462294Z","published":"2008-08-04T19:41:00Z","references":[{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2008/2316"},{"type":"WEB","url":"http://openvpn.net/index.php/documentation/change-log/changelog-21.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/30532"},{"type":"WEB","url":"http://www.securitytracker.com/id?1020626"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/44209"}],"schema_version":"1.7.5"}