[Bug 1816163] CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service

Author:



An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service. External Reference:

This CVE Bugzilla entry is for community support informational purposes only as….



Source link

Write a comment:
*

Your email address will not be published.

RELATED STORIES
Category Applications CERT-LatestNews Cybersecurity-Covid-19 VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCisco VulnerabilitiesMicrosoft

Новости информационной безопасности

March 30, 2020
Тема коронавируса сегодня заполонила все новостные ленты, а также стала основным лейтмотивом и для различных...
Read More
vamtam-theme-circle-post
Category Applications VulnerabilitiesAll VulnerabilitiesApplications

Fedora 32: weechat FEDORA-2020-d242130019>

March 30, 2020
New version, fixes a lot of bugs (some of them security). In the same update,...
Tags , , ,
Read More
Category Applications CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCrypto VulnerabilitiesLinux VulnerabilitiesOS

OpenSUSE Linux update for strongswan

March 30, 2020
Severity Medium Patch available YES Number of vulnerabilities 6 CVE ID CVE-2018-10811CVE-2018-16151CVE-2018-16152CVE-2018-17540CVE-2018-5388CVE-2018-6459 CWE ID CWE-119CWE-287CWE-124...
Tags , , , , , , , , , , , ,
Read More
Category CERT-LatestNews Database Management Systems ThreatsCybercrime ThreatsEconomic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesDBMS VulnerabilitiesLinux VulnerabilitiesOS

OpenSUSE Linux update for phpMyAdmin

March 30, 2020
Security Advisory 2) Stored cross-site scripting Severity: Low CVSSv3: 3.9 [CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C] CVE-ID: CVE-2020-10803 CWE-ID: CWE-79...
Tags , , , , , , ,
Read More
vamtam-theme-circle-post
Category Applications VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesLinux

Debian LTS: DLA-2162-1: php-horde-form security update>

March 30, 2020
A remote code execution vulnerability was discovered in the Form API component of the Horde...
Tags , , , , , , , ,
Read More
Category Applications CERT-LatestNews ThreatsActivists ThreatsCybercrime ThreatsEconomic VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCrypto VulnerabilitiesLinux VulnerabilitiesMicrosoft VulnerabilitiesNetwork VulnerabilitiesOS

CVE-2019-4716 IBM Planning Analytics 安全漏洞-漏洞情报、漏洞详情、安全漏洞、CVE

March 29, 2020
Hi, Here's a fun one I have been working on for some time. tl;dr IBM...
Tags , , , , , , , , , , , , , , , , , , ,
Read More
Category Applications CERT-LatestNews ThreatsCybercrime ThreatsEconomic VulnerabilitiesAll VulnerabilitiesApplications

How Automation Turns CTI Analysts Into Super Heroes

March 29, 2020
The expanding demand for Cyber Threat Intelligence (CTI) and its extensive use by organizations worldwide,...
Read More
vamtam-theme-circle-post
Category CERT-LatestNews Database Management Systems ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesDBMS

Vulnerability openSUSE Leap via apt-cacher-ng

March 29, 2020
The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a...
Tags , , , ,
Read More
Category Database Management Systems VulnerabilitiesAll VulnerabilitiesDBMS VulnerabilitiesGoogle VulnerabilitiesHardware VulnerabilitiesLinux VulnerabilitiesOS

Webexcels Ecommerce CMS 2.x SQL Injection / Cross Site Scripting

March 29, 2020
# Exploit Title: Webexcels Ecommerce CMS SQL Injection & XSS Vulnerability # Google Dork: intext:intext:”...
Tags , , , , , , , ,
Read More
Category Applications CERT-LatestNews VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesGoogle VulnerabilitiesMozilla

LeptonCMS 4.5.0 Cross Site Scripting

March 29, 2020
# Exploit Title: LeptonCMS 4.5.0 – Persistent Cross-Site Scripting # Google Dork: “lepton cms” #...
Read More
digitpol
scale
element-support
Call Center
+31 55 8448040
element-map
Location

Global

International Cyber Crime Investigation

Digitpol is licensed by the Ministry of Justice: Licence Number POB1557

©Digitpol. All images and content are copyright of Digitpol and can not be used, replicated or reproduced without written permission. 2019.

Privacy  /   Terms and Policy   /   Site map  /   Contact