Secure all data communications and extend private network services

OpenVPN (64-bit)

OpenVPN (64-bit)

  -  5.6 MB  -  Open Source
  • Latest Version

    OpenVPN 2.7.5 (64-bit) LATEST

  • Review by

    Michael Reynolds

  • Operating System

    Windows 7 64 / Windows 8 64 / Windows 10 64 / Windows 11

  • User Rating

    Click to vote
  • Author / Product

    OpenVPN Inc. / External Link

  • Filename

    OpenVPN-2.7.5-I001-amd64.msi

OpenVPN 64 bit is an award-winning and fully-featured SSL VPN solution that can allow everyone from computing novices to large companies to configure the way they are accessing the internet, unlocking powerful services for safer and stealthier browsing experience

Built from the ground up to support latest encryption methods, this app allows you to connect your PC to OpenVPN servers without the fear that anyone will intercept and spy on your data, from where your data requests will be distributed across the rest of the web in a safe and controlled manner.

This downloads the source code. Please download OpenVPN Connect if you need a working OpenVPN GUI client.
 
By default, the app can distribute your data traffic across many of its servers, making your online location masked and unrecognizable to Internet Service Providers and the rest of the internet in general

In addition to that, It also comes with the large offering of customization tools that can be used for setting up remote access privileges, site-to-site VPNs, enterprise-scale remote access, adaptive load-balancing, advanced Wi-Fi security, failover services, fine-grained user access control, and much more.
 


The presence of both automated VPN services and advanced tools have made OpenVPN 64bit into #1 secure browsing software of choice for both regular users, organizations of all sizes, and many Fortune 500 companies.

Installation and Use

It comes in a small package that will after installation re-configure the way your computer is accessing the internet.

The configuration window of this app is actually very lightweight, and it holds only the most basic of tools for setting the type of your VPN setting (config file, system proxy settings or manual configuration) and a dropdown menu for selecting user interface language (with over 15 available translations).

Originally built for use in enterprise environments, the personal tier of OpenVPN retains the highly advanced technologies and lightweight tools. The core security feature of OpenVPN is based upon OSI layer 2 or 3 secure network extension that is utilizing SSL/TLS protocols. It installs deep into the Windows OS, enabling all the user apps to take advantage of the security features, firewall rules, authentication certificates, and more.

In the real world, ordinary non-business users can encounter various roadblocks that can prevent them from taking full advantage of their home internet connection.

This may include ISP data rate throttling, website content region blocking, or even government-imposed firewalls. It allows users to circumvent these issues, offering you stable and secure data stream to their servers, from which you will be re-routed to any major region in the world, and be able to access its “local” content.

No matter if you want to simply access region-specific sites and services (such as streaming platforms content offering) or to read censored news outlets, It can allow you to do that in just a few clicks.

Another benefit of an Open VPN is a unified virtual presence. No matter where you physically are, if you are using Open VPN, the rest of the internet will be able to detect you originating from a single region.

Features and Highlights
  • Core – With over 50 million downloads, the core technology of Open VPN has proven to be one of the leaders in the field of VPN security.
  • Advanced AES encryption – It encrypts all outgoing and incoming internet data with the world’s leading standard for encryption.
  • Fortified privacy – Effortlessly protect your personal and online identity by location spoofing your IP address.
  • Wireless hot spot protection – Prevent unauthorized access to your data while connecting to public and unsecured Wi-Fi sports.
  • Travel protection – Mask your online location no matter where you are.
  • Worldwide server connection – Gain access and establish your virtual presence at servers that are in 12 regions around the world.
  • Unrestricted access – Access OpenVPN servers from any location in the world.
  • 24/7 support – Gain access to support 24/7 via email or live webchat.
  • Full Windows compatibility – Available on all modern versions of Windows, ranging from Windows 2003 to Windows 11 (both 32-bit and 64-bit).
PROS
  • Easy to use and scalable for both personal and business use.
  • Secure data transport over an encrypted tunnel.
  • Cross-platform support for various operating systems.
  • Free!
CONS
  • None.
Also Available: OpenVPN (32-bit) and OpenVPN for Mac

Why is this app published on FileHorse? (More info)
  • OpenVPN 2.7.5 (64-bit) Screenshots

    The images below have been resized. Click on them to view the screenshots in full size.

    OpenVPN 2.7.5 (64-bit) Screenshot 1

What's new in this version:

Security fixes:
- openvpnserv (windows): fix DNS SearchList state pollution on (dis)connect.
- specific combinations of --dns config entries plus local DNS config could lead to corruption of pre-openvpn DNS config
- Fix use-after-free bug in ack_write_buf(), triggerable by a well-timed sequence of control channel + authentication packets

Bug found by multiple researchers:
- Fix use-after-free bug in tls_wrap_reneg(), triggerable by suitable sequence of dynamic tls-crypt control-channel packets
- Fix server crash on reception of suitably malformed auth-token, if auth-gen-token external-auth is active
- Fix memory-leak in tls-crypt-v2 client key handling that could lead to out-of-memory situations and subsequent server crashes
- Fix possible 1-byte buffer overrun on NTLMv2 proxy responses
- Fix another memory leak on reception of suitable tls-crypt-v2 packets that could lead to an out of memory situation and server crash

Fixed:
- Windows: fix plugin trusted-dir check prefix bypass this fixes a bug in the path checking logic we do on Windows for "is loading a plugin from this path allowed?", but since we could not find a way to exploit this unless starting with admin privs or a social engineering attack, not classified as a security fix)
- Windows: openvpnserv: rework ConvertItfDnsDomains and tests this fixes a buffer overread that is not exploitable and as such not classified as security fix)
- options: fix use-after-free of DNS options on client connect using suitable --dns or --dhcp-option DNS options in a server config - not pushed, but applying to the server itself - triggers a double free() and use-after-free condition, possibly crashing the server) (Github: OpenVPN/openvpn#1060)
- dns: Fix memory leak in dns_server_addr_parse, if too many server addresses are configured (Github: OpenVPN/openvpn#1055)
- improve multi-socket event handling further - multiple open UDP sockets with concurrent traffic could lead to inefficient processing, and theold code was also very hard to follow. This was initially triggered by a report from Joshua Rogers using ZeroPath, but turned out to be "just bad code" not a security vulnerability)
- Null-terminate tls-crypt client keys when testing - non-exploitable strlen() on a buffer that is not null-terminated mudp: send HMAC reset reply synchronously this fixes a bug where multiple incoming tls-crypt-v2 RESET packets on different sockets could end up overwriting each other's control structures, leading to initial handshake packets (HMAC reset reply) being sent to the wrong client IP, or on a non-suitable socket "v4 packet on a v6 socket"). Since the overall flow here is stateless by nature, do not artificially create state by creating elaborate queues, just send-or-drop.
- fix port-share and multi-socket interaction - port-share needs TCP listeners, but the check was wrong. So "as long as any of the listening sockets is TCP, port-share can be used" (Github: OpenVPN/openvpn#1027)
- Ensure pushed tun-mtu is no lower than TUN_MTU_MIN - this fixes a bug where a server can push a suitable combination of options and make the client ASSERT(). Reported as security issue by Haiyang Huang, but it was decided that the server always has means to make the client "not function properly", and it can not be exploited beyond that)
- Windows: socket: assert buffer length before reading prepended sockaddr family - a misbehaviour in the windows DCO driver could trigger an overread in the userland client. No such bug exists, which this was not treated as a security vulnerability

Documentation improvements:
- improve documentation for --float (Github: OpenVPN/openvpn#358)
- add documentation for --preresolve (Github: OpenVPN/openvpn#532)
- impove documentation around DNS config (Github: OpenVPN/openvpn#937)