Kamailio vulnerable to header smuggling possible due to bypass of remove_hf

September 1, 2020 admin cyber, exploit, full disclosure, OSINT, seclist, Security, threatintel, vulnerabilities, vulnerability, vulns

Click the icon to Follow me:-

Posted by Sandro Gauci on Sep 01

AMD Ryzen 5 3600 6-Core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler $199.99

The world's most advanced processor in the desktop PC gaming segment Can deliver ultra-fast 100+ FPS performance in the world's most popular games 6 cores and 12 processing threads bundled with the quiet AMD wraith stealth cooler max temps 95°C 4 2 G... read more

(as of January 26, 2021 - )

AMD Ryzen 5 5600X 6-core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler ~~$389.96~~ $384.99

AMD's fastest 6 core processor for mainstream desktop, with 12 processing threads Can deliver elite 100+ FPS performance in the world's most popular games Bundled with the quiet, capable AMD Wraith Stealth cooler 4.6 GHz Max Boost, unlocked for overc... read more

(as of January 26, 2021 - )

AMD Ryzen 7 5800X 8-core, 16-Thread Unlocked Desktop Processor Without Cooler Black, XX-Large ~~$537.99~~ $519.98

AMD's fastest 8 core processor for mainstream desktop, with 16 procesing threads Can deliver elite 100+ FPS performance in the world's most popular games Cooler not included, high-performance cooler recommended 4.7 GHz Max Boost, unlocked for overclo... read more

(as of January 26, 2021 - )

# Kamailio vulnerable to header smuggling possible due to bypass of remove_hf

– Fixed versions: Kamailio v5.4.0
– Enable Security Advisory: <https://github.com/EnableSecurity/advisories/tree/master/ES2020-01-kamailio-remove-hf>
– Tested vulnerable versions: 5.3.5 and earlier
– Timeline:
– Report date & issue patched by Kamailio: 2020-07-16
– Kamailio rewrite for header parser (better fix): 2020-07-16 to 2020-07-23
-…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.