FreeBSD : tinc -- Buffer overflow (a4eb38ea-cc06-11e8-ada4-408d5cf35399)
High Nessus Plugin ID 118024
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
Descriptiontinc-vpn.org reports :
The authentication protocol allows an oracle attack that could potentially be exploited.
If a man-in-the-middle has intercepted the TCP connection it might be able to force plaintext UDP packets between two nodes for up to a PingInterval period.
SolutionUpdate the affected packages.