OpenVPN Privilege Escalation Vulnerability in Windows

A privilege escalation vulnerability has been identified in OpenVPN versions 2.4.0 through 2.6.10 on Windows. This issue allows an external, lesser-privileged process to create a named pipe that the OpenVPN GUI component connects to, enabling the process to escalate its privileges. According to the OpenVPN community, a malicious process with some elevated privileges could exploit this vulnerability by reopening the pipe, tricking the OpenVPN GUI into disclosing user credentials and tokens, thereby gaining full access to the account under which the OpenVPN GUI is running.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a lesser-privileged process to gain elevated rights and access within the OpenVPN application.

Remediation

Users can upgrade to OpenVPN version 2.6.11, which includes a security fix for this vulnerability. This version is available for download from the OpenVPN community downloads page. Debian and Ubuntu packages can be obtained from the official APT repositories, and Red Hat derivatives can use the Fedora Copr repository.