Vulnerabilities > CVE-2009-5009 - Resource Management Errors vulnerability in Infradead Openconnect
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Double free vulnerability in OpenConnect before 1.40 might allow remote AnyConnect SSL VPN servers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted DTLS Cipher option during a reconnect operation.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |