Vulnerability description and reproduction #1

mrbar42 · 2021-06-08T14:25:08Z

No description provided.

prflxion.js

readme.md

shacharz · 2021-06-08T14:53:47Z

readme.md

+### Exploitation
+So, to exploit this we would need to create a STUN_BIND_REQUEST that will create a STUN_BIND_RESPONSE that has the 4in6 local ipv4 as XOR_MAPPED_ADDRESS.
+First, we don't define any STUN server. When candidate pairing is done in that case, the STUN_BIND_REQUEST goes directly to the other peer. 
+Fortunately, the WEBRTC [network manager binds two UDP sockets](https://webrtc.googlesource.com/src/+/9f9bf38805e14688acef01fe6814b8ce3a98c09c/rtc_base/network.cc#284)  - one on INADDR_ANY (0.0.0.0), and another on in6addr_any. These Sockets are used to create the local candidates, and also to do the MDNS protocol negotiation.


Are they also used to do the mDNS protocol negotiation ? I thought it's a different module. anyway not sure this explanation is relevant (what they are used for)

rephrase some text + add logo

mrbar42 assigned shacharz and mrbar42 Jun 8, 2021

shacharz requested changes Jun 8, 2021

View reviewed changes

shacharz assigned piroa and unassigned shacharz Jun 8, 2021

Merge pull request #2 from Peer5/fixes

2c125a4

rephrase some text + add logo

shacharz merged commit f129ecf into main Jun 9, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Vulnerability description and reproduction #1

Vulnerability description and reproduction #1

mrbar42 commented Jun 8, 2021

shacharz Jun 8, 2021

Vulnerability description and reproduction #1

Vulnerability description and reproduction #1

Conversation

mrbar42 commented Jun 8, 2021

shacharz Jun 8, 2021

Choose a reason for hiding this comment