CVE-2020-6062
published 2020-02-19CVE-2020-6062: An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead…
PriorityP340high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
5.96%
92.4th percentile
An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service. An attacker needs to send an HTTP request to trigger this vulnerability.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| coturn_project | coturn | — | — |
| coturn_project | coturn | — | — |
| coturn_project | coturn | >= 0 < 4.5.1.1-1.2 | 4.5.1.1-1.2 |
| coturn_project | coturn | >= 0 < 4.5.1.1-1.2 | 4.5.1.1-1.2 |
| coturn_project | coturn | >= 0 < 4.5.1.1-1.2 | 4.5.1.1-1.2 |
| coturn_project | coturn | >= 0 < 4.5.1.1-1.2 | 4.5.1.1-1.2 |
| coturn_project | coturn | >= 0 < 4.5.0.3-1ubuntu0.3 | 4.5.0.3-1ubuntu0.3 |
| coturn_project | coturn | >= 0 < 4.5.0.7-1ubuntu2.18.04.2 | 4.5.0.7-1ubuntu2.18.04.2 |
| coturn_project | coturn | >= 0 < 4.5.1.1-1.1ubuntu0.20.04.1 | 4.5.1.1-1.1ubuntu0.20.04.1 |
| debian | coturn | < coturn 4.5.1.1-1.2 (bookworm) | coturn 4.5.1.1-1.2 (bookworm) |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv3.05.9MEDIUMCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_ubuntu7.0HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-8m27-48h2-7f6h: An exploitable denial-of-service vulnerability exists in the way CoTURN 4
ghsa_unreviewed·2022-05-24
CVE-2020-6062 [MEDIUM] CWE-476 GHSA-8m27-48h2-7f6h: An exploitable denial-of-service vulnerability exists in the way CoTURN 4
An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service. An attacker needs to send an HTTP request to trigger this vulnerability.
OSV
coturn vulnerabilities
osv·2020-07-06·CVSS 7.5
CVE-2020-4067 [HIGH] coturn vulnerabilities
coturn vulnerabilities
Felix Dörre discovered that coTURN response buffer is not initialized properly.
An attacker could possibly use this issue to obtain sensitive information.
(CVE-2020-4067)
It was discovered that coTURN web server incorrectly handled HTTP POST requests.
An attacker could possibly use this issue to cause a denial of service, obtain
sensitive information or other unspecified impact.
(CVE-2020-6061, CVE-2020-6062)
OSV
CVE-2020-6062: An exploitable denial-of-service vulnerability exists in the way CoTURN 4
osv·2020-02-19·CVSS 7.5
CVE-2020-6062 [HIGH] CVE-2020-6062: An exploitable denial-of-service vulnerability exists in the way CoTURN 4
An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service. An attacker needs to send an HTTP request to trigger this vulnerability.
Ubuntu
coTURN vulnerabilities
vendor_ubuntu·2020-07-06·CVSS 7.0
CVE-2020-6061 [HIGH] coTURN vulnerabilities
Title: coTURN vulnerabilities
Summary: Several security issues were fixed in coTURN.
Felix Dörre discovered that coTURN response buffer is not initialized properly.
An attacker could possibly use this issue to obtain sensitive information.
(CVE-2020-4067)
It was discovered that coTURN web server incorrectly handled HTTP POST requests.
An attacker could possibly use this issue to cause a denial of service, obtain
sensitive information or other unspecified impact.
(CVE-2020-6061, CVE-2020-6062)
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2020-6062: coturn - An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 ...
vendor_debian·2020·CVSS 7.5
CVE-2020-6062 [HIGH] CVE-2020-6062: coturn - An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 ...
An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service. An attacker needs to send an HTTP request to trigger this vulnerability.
Scope: local
bookworm: resolved (fixed in 4.5.1.1-1.2)
bullseye: resolved (fixed in 4.5.1.1-1.2)
forky: resolved (fixed in 4.5.1.1-1.2)
sid: resolved (fixed in 4.5.1.1-1.2)
trixie: resolved (fixed in 4.5.1.1-1.2)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service
bugzilla·2020-03-23·CVSS 7.5
CVE-2020-6062 [HIGH] CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service
CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service
An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service.
External Reference:
https://talosintelligence.com/vulnerability_reports/TALOS-2020-0985
Discussion:
Created coturn tracking bugs for this issue:
Affects: epel-all [bug 1816165]
Affects: fedora-all [bug 1816164]
---
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
Bugzilla
CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service [epel-all]
bugzilla·2020-03-23·CVSS 7.5
CVE-2020-6062 [HIGH] CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service [epel-all]
CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue
Bugzilla
CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service [fedora-all]
bugzilla·2020-03-23·CVSS 7.5
CVE-2020-6062 [HIGH] CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service [fedora-all]
CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this i
Talos
Vulnerability Spotlight: Memory corruption, DoS vulnerabilities in CoTURN
blogs_talos·2020-02-18·CVSS 9.8
[CRITICAL] Vulnerability Spotlight: Memory corruption, DoS vulnerabilities in CoTURN
## Vulnerability Spotlight: Memory corruption, DoS vulnerabilities in CoTURN
Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.
CoTURN contains denial-of-service and memory corruption vulnerabilities in the way its web server parses POST requests. CoTURN is a TURN server implementation that can be used as a general- purpose network traffic TURN server and gateway. The software includes a web server for administration purposes, which is where these two vulnerabilities exist.
In accordance with our coordinated disclosure policy, Cisco Talos worked with CoTURN to ensure that these issues are resolved and that an update is available for affected customers. CoTURN notified Talos that these vulnerabilities were also discovered by Quarkslab.
## Vulnerability
Talos
Vulnerability Spotlight: Memory corruption, DoS vulnerabilities in CoTURN
blogs_talos·2020-02-18·CVSS 9.8
[CRITICAL] Vulnerability Spotlight: Memory corruption, DoS vulnerabilities in CoTURN
Aleksandar Nikolic of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.
CoTURN contains denial-of-service and memory corruption vulnerabilities in the way its web server parses POST requests. CoTURN is a TURN server implementation that can be used as a general-
purpose network traffic TURN server and gateway. The software includes a web server for administration purposes, which is where these two vulnerabilities exist.
In accordance with our coordinated disclosure policy, Cisco Talos worked with CoTURN to ensure that these issues are resolved and that an update is available for affected customers. CoTURN notified Talos that these vulnerabilities were also discovered by Quarkslab.
### Vulnerability detailsCoTURN HTTP Server POST-parsing memory corruption vulnerability (TALO
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQZZPI34LAS3SFNW6Z2ZJ46RKVGEODNA/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OUVZRXW5ZIGWVKOLF3NPXRPP74YX7BUY/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XN2NK6FT7AMW5UIZNXDNHKEAYWAUMGSF/https://talosintelligence.com/vulnerability_reports/TALOS-2020-0985https://usn.ubuntu.com/4415-1/https://www.debian.org/security/2020/dsa-4711https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQZZPI34LAS3SFNW6Z2ZJ46RKVGEODNA/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OUVZRXW5ZIGWVKOLF3NPXRPP74YX7BUY/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XN2NK6FT7AMW5UIZNXDNHKEAYWAUMGSF/https://talosintelligence.com/vulnerability_reports/TALOS-2020-0985https://usn.ubuntu.com/4415-1/https://www.debian.org/security/2020/dsa-4711
2020-02-19
Published