Explore a critical vulnerability in industrial remote access solutions utilizing OpenVPN in this Hack in Paris conference talk. Delve into the intricacies of Work From Home setups in industrial environments, focusing on Programmable Logic Controllers and remote access solutions. Examine OpenVPN's inner workings and traffic patterns to uncover a significant security flaw that can lead to remote code execution on VPN clients. Learn about loose backend parsers, Same-Origin Policy (SOP), and Cross-Origin Resource Sharing (CORS) implications. Investigate the PerFact OpenVPN backend and architecture, and follow a step-by-step guide to prepare an exploit. Gain insights into HMS Networks, Structured Exception Handling (SEH), and the mbDIALUP launcher as part of this comprehensive analysis of industrial VPN security vulnerabilities.