N/A

An exploitable unsafe default configuration vulnerability exists in the TURN server functionality of coTURN prior to 4.5.0.9. By default, the TURN server allows relaying external traffic to the loopback interface of its own host. This can provide access to other private services running on that host, which can lead to further attacks. An attacker can set up a relay with a loopback address as the peer on an affected TURN server to trigger this vulnerability.

N/A

N/A

coTURN 配置错误漏洞

coTURN是一款VoIP媒体流量NAT遍历服务器和网关。 coTURN中存在安全漏洞。远程攻击者可利用该漏洞访问只有本地用户可访问的服务。

N/A

N/A