Coturn, a free open-source implementation of TURN and STUN Server, is vulnerable to a stack buffer overflow in decode_oauth_token_gcm(). This issue allows an attacker to write up to 735 bytes of controlled data past a 256-byte stack buffer, potentially corrupting adjacent stack data, including control-flow data. The vulnerability exists in versions prior to 4.10.0 and is exploitable in --oauth mode, which [truncated]
Coturn, a free open-source implementation of TURN and STUN Server, has a stored cross-site scripting (XSS) vulnerability in its web-admin HTTPS interface. An attacker can create a TURN allocation with a crafted USERNAME value to inject HTML/JavaScript that executes when an authenticated web-admin user views the TURN session list. This issue may be exploitable without TURN credentials in configurations usi [truncated]
