Viscosity 1.8.4

  1. Viscosity 104f At 40c
  2. Viscosity 1.8.4 Using
  3. Viscosity 1.8.4 2016

Viscosity for Mac is a first class OpenVPN client that lets you secure your network with ease & style. Viscosity makes it easy for users new to VPNs to get started. Its clear and intuitive interface makes creating, configuring, or importing connections a snap.

Viscosity

Viscosity 104f At 40c

  1. Current Description. Viscosity 1.8.2 on Windows and macOS allows an unprivileged user to set a subset of OpenVPN parameters, which can be used to load a malicious library into the memory of the OpenVPN process, leading to limited local privilege escalation.
  2. Jan 13, 2020  Viscosity is a first class VPN client, providing everything you need to establish fast and secure OpenVPN connections on both macOS and Windows. Viscosity caters to both users new to VPNs and experts alike, providing secure and reliable VPN connections. Whether remotely connecting to your workplace network, home network, VPN Service Provider, or other setup, Viscosity ensures it's done.

About SparkLabs

Viscosity 1.8.4

SparkLabs is a small independent company that creates powerful software for desktop and mobile. We were founded in early 2008 and we've been working on designing and developing beautiful software ever since.
We strive to bring powerful computing technologies to all users through apps with beautiful intuitive designs with a focus on network security and user privacy. We at SparkLabs take pride in developing software that our users love.



Recent News

Viscosity For Mac & Windows: Version 1.8.4

updates

Viscosity version 1.8.4 is now available for both macOS and Windows! This update includes two-factor token authentication improvements, an updated version of OpenSSL for OpenVPN 2.3, a low-severity security fix, and a number of small bug fixes and improvements for both platforms. On the authentication side, a number of PKCS#11 issues have been addressed on both platforms, which should allow additional tokens and certificate/keys to be used for authentication. This should also resolve... Read Post »

Viscosity For Mac & Windows: Version 1.8.3

updates

Viscosity version 1.8.3 is now available for both macOS and Windows! This update is primarily a small maintenance release with bug fixes and minor enhancements. Most notably, Viscosity will now prompt to allow connections to OpenVPN setups with certificates where...
Read Post »

Viscosity For Mac & Windows: Version 1.8.2

updates

Version 1.8.2 of Viscosity has been released for both macOS and Windows! This update includes both updated versions of OpenVPN (2.4.8) and OpenSSL (1.1.1d), as well as many improvements and bug fixes for both platforms. In particular, with the update to the...
Read Post »

Viscosity For Mac & Windows: Version 1.8.1

updates

Viscosity version 1.8.1 is now available for both macOS and Windows! This update is primarily a maintenance release and it includes a number of small tweaks and improvements for both platforms. Viscosity now integrates the new U2F APIs introduced in Windows 10...
Read Post »

Viscosity 1.8.4 download

Viscosity For Mac & Windows: Version 1.8.4

Viscosity version 1.8.4 is now available for both macOS and Windows! This update includes two-factor token authentication improvements, an updated version of OpenSSL for OpenVPN 2.3, a low-severity security fix, and a number of small bug fixes and improvements for both platforms.

On the authentication side, a number of PKCS#11 issues have been addressed on both platforms, which should allow additional tokens and certificate/keys to be used for authentication. This should also resolve certain keys not working in the previous two releases of Viscosity.

Viscosity now also supports importing connections that include an inline username and password. These will automatically be loaded into the Keychain or Windows Credential Manager at import time for safe storage.

On the Mac Viscosity will now automatically detect when the 'Disable Time Machine backups while connected' feature is blocked. macOS 10.15 requires that applications be granted the 'Full Disk Access' privilege to enable or disable automatic backups. If granted, Viscosity will only use this privilege to enable/disable Time Machine backups, and only if the feature is enabled.

This update also contains two security related updates. Firstly, OpenVPN 2.3 is now updated to use OpenSSL 1.0.2u (OpenVPN 2.4 will continue to use OpenSSL 1.1.1d). With OpenSSL 1.0.2 now end of life, Viscosity will likely be dropping OpenVPN 2.3 later in the year (please keep in mind that OpenVPN 2.4 is backwards compatible with servers running older versions of OpenVPN).

Viscosity 1.8.4 Using

Secondly, this update also addresses a low-severity security vulnerability (CVE-2020-5180). An attacker with local access could potentially run arbitrary code within Viscosity's OpenVPN sandbox by using a maliciously crafted OpenSSL engine and associated command. Such an attack is successfully contained within Viscosity's sandbox, which has de-elevated permissions and access restrictions, and so an attacker does not gain elevated local permissions (such as root or SYSTEM) on the machine and their actions are severely limited.

However, under macOS an attacker may be able to access on-disk VPN credentials (such as a certificate and private key) from other active OpenVPN connections that run within the sandbox at the same time. This does not apply to the Windows version. Because of this, we encourage those in multi-user macOS environments to update as soon as possible. Special thanks to Rich Mirch for identifying and reporting this issue.


Version 1.8.4 Mac Release Notes:

Import support for inline usernames and passwords
OpenSSL updated to version 1.0.2u for OpenVPN 2.3
Resolves PKCS#11 issue using some RSA certificates
Resolves issue moving the menu icon on older versions of macOS
Detects if Time Machine backups could not be disabled due to macOS privileges
Resolves low-severity security vulnerability (CVE-2020-5180)
Various bug fixes and enhancements

Viscosity 1.8.4 2016



Version 1.8.4 Windows Release Notes:

Import support for inline usernames and passwords
ECDSA support for CNG (--cryptoapicert)
TLS 1.3 RSA-PSS support for PKCS#11 and CNG (--cryptoapicert)
Disabled DNS Mode functionality has been improved
OpenSSL updated to version 1.0.2u for OpenVPN 2.3
Resolves an issue where connections failed on Windows Server Domain Controllers
Resolves issue with PKCS#11 connections using ECDSA keys
Resolves low-severity security vulnerability (CVE-2020-5180)
Resolves regression that could cause some connections to fail on 32-bit installations (Build 1651)
Various bug fixes and enhancements

The 1.8.4 update can be automatically installed from inside Viscosity, or downloaded and manually installed. For support with this version please visit our support section.