Monday, March 23, 2020

Vulnerability Spotlight: Denial-of-service vulnerability in GStreamer


Peter Wang of Cisco ASIG discovered this vulnerability. Blog by Jon Munshaw.

Cisco Talos recently discovered a denial-of-service vulnerability in GStreamer, a pipeline-based
multimedia framework. GStreamer contains gst-rtsp-server, an open-source library that allows the user to build RTSP servers. This function contains an exploit that an attacker could use to cause a null pointer deference, resulting in a denial of service.

In accordance with our coordinated disclosure policy, Cisco Talos worked with GStreamer to ensure that these issues are resolved and that an update is available for affected customers.

Vulnerability details

GStreamer gst-rtsp-server GstRTSPAuth denial-of-service vulnerability (TALOS-2020-1018/CVE-2020-6095)

An exploitable denial-of-service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference, resulting in a denial of service. An attacker can send a malicious packet to trigger this vulnerability.

Read the complete vulnerability advisory here for additional information.

Versions tested

Gstreamer gst-rtsp-server, version 1.14.5 is affected by this vulnerability.

Coverage

The following SNORTⓇ rules will detect exploitation attempts. Note that additional rules may be released at a future date and current rules are subject to change pending additional vulnerability information. For the most current rule information, please refer to your Firepower Management Center or Snort.org.

Snort Rules: 53418

No comments:

Post a Comment