Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when running on non-Windows systems, allows remote servers to execute arbitrary commands via crafted (1) lladdr and (2) iproute configuration directives, probably related to shell metacharacters.
https://exchange.xforce.ibmcloud.com/vulnerabilities/44209
http://www.vupen.com/english/advisories/2008/2316
http://www.securitytracker.com/id?1020626
http://www.securityfocus.com/bid/30532
http://openvpn.net/index.php/documentation/change-log/changelog-21.html