[Bug 1816163] CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service

Author:



An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service. External Reference:

This CVE Bugzilla entry is for community support informational purposes only as….



Source link

Write a comment:
*

Your email address will not be published.

RELATED STORIES
vamtam-theme-circle-post
Category APPLE VulnerabilitiesAll VulnerabilitiesApple VulnerabilitiesGoogle VulnerabilitiesHardware VulnerabilitiesOS

India banned 59 Chinese apps in a geopolitical swipe

July 7, 2020
India banned 59 Chinese-owned apps on June 29, including TikTok. The ban follows a border...
Tags , , , , , ,
Read More
Category CERT-LatestNews Linux ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesLinux VulnerabilitiesOS VulnerabilitiesVOIP

OpenSUSE Linux update for live555

July 7, 2020
1) Use-after-free Severity: Medium CVSSv3: 6.5 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C] [PCI] CVE-ID: CVE-2019-7314 CWE-ID: CWE-416 – Use After...
Tags , , , , , , , , , , , ,
Read More
vamtam-theme-circle-post
Category Microsoft VulnerabilitiesAll VulnerabilitiesGoogle VulnerabilitiesMicrosoft VulnerabilitiesOS

微软发布紧急更新来修补影响Windows 10和Windows Server的两个重要漏洞|Windows|解码器|安全漏洞_新浪科技_新浪网

July 7, 2020
原标题:微软发布紧急更新来修补影响Windows 10和Windows Server的两个重要漏洞 微软于6月30日发布了Windows10 编解码器库(Codecs)中两个严重安全漏洞(代号分别为CVE-2020-1425和CVE-2020-1457)的补丁。这些修复是计划外更新的一部分,是强制性的。它们利用RCE(远程代码执行)功能解决了两个安全漏洞。这些漏洞同时影响Windows10客户端和服务器版本。以下操作系统受到影响: Windows 10 version 1709 Windows 10 version 1803 Windows 10...
Tags , , , , , ,
Read More
vamtam-theme-circle-post
Category CERT-LatestNews Linux VulnerabilitiesAll VulnerabilitiesLinux VulnerabilitiesOS

FKIE发布2020版《家用路由器安全性报告》结果很不乐观 – 警告! – cnBeta.COM

July 7, 2020
为了解家用路由器的最新固件中是否存在已知的安全漏洞,德国弗劳恩霍夫通信研究院(FKIE)对来自七个品牌的 127 款设备进行了检查,结果让人很是担忧。FKIE 指出,过去一年里,有 46 款家用路由器没有迎来哪怕一次安全更新,且许多路由器都受到数百个已知漏洞的影响。更糟糕的是,供应商甚至在未修复已知漏洞的情况下发布固件更新。这意味着即时消费者部署了最新固件,他们的路由器仍处于易受攻击的状态。 访问: 阿里云新用户福利专场 云服务器ECS低至102元/年 天翼云年中上云节 云主机1C2G 92元/年 实名注册送8888元大礼包 资料图(来自:ASUS) FKIE...
Tags , , , , ,
Read More
vamtam-theme-circle-post
Category Applications CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesHardware VulnerabilitiesNetwork

Column | Risk Management and Other Cybersecurity Considerations for Connected Medical Devices

July 7, 2020
The medical industry is driven by patient care, and medical device manufacturers are constantly looking...
Read More
vamtam-theme-circle-post
Category Applications CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesNetwork

Vulnerabilities Digest: June 2020 – Security Boulevard

July 7, 2020
Highlights for June 2020 Cross site scripting is still the most common vulnerability in WordPress...
Read More
vamtam-theme-circle-post
Category Database Management Systems VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesDBMS

F5 BIG-IP Remote Code Execution Exploit – CVE-2020-5902

July 7, 2020
When TEAMARES began research into the vulnerability identified in the F5 TMUI RCE vulnerability advisory...
Tags , , , , , ,
Read More
Category Applications CERT-LatestNews VulnerabilitiesAll VulnerabilitiesApplications

360CERT – 每日安全简报 (2020-07-07)

July 7, 2020
We are greeting further cooperation with all parts of security services. If you are interested...
Read More
Category Database Management Systems VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesDBMS

Security Bulletin: BIND for IBM i is affected by CVE-2020-8616 and CVE-2020-8617

July 7, 2020
Jul 3, 2020 8:00 pm EDT | High Severity There are multiple vulnerabilities in...
Tags , , , , , , ,
Read More
vamtam-theme-circle-post
Category Applications VulnerabilitiesAll VulnerabilitiesApplications

複数のBIG-IP製品に、攻撃の踏み台にされるなどの脆弱性(JPCERT/CC)

July 7, 2020
一般社団法人 JPCERT コーディネーションセンター(JPCERT/CC)は7月6日、「複数の BIG-IP 製品の脆弱性 (CVE-2020-5902) に関する注意喚起」を発表した。これは、F5 Networksがセキュリティアドバイザリ「K52145254: TMUI RCE vulnerability CVE-2020-5902」を公開したことを受けたもの。 対象となる製品およびバージョンは次の通り。 ・BIG-IP (LTM,...
Tags , , , , , , ,
Read More
digitpol
scale
element-support
Call Center
+31 55 8448040
element-map
Location

Global

International Cyber Crime Investigation

Digitpol is licensed by the Ministry of Justice: Licence Number POB1557

©Digitpol. All images and content are copyright of Digitpol and can not be used, replicated or reproduced without written permission. 2019.

Privacy  /   Terms and Policy   /   Site map  /   Contact