corelight/callstranger-detector

Releases0

Stars6

Zeek Plugin that detects CallStranger (CVE-2020-12695) attempts (http://callstranger.com/)

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-12695 ↗	Jun 8, 2020Monday, 8 June 2020, 17:15	7.5 HIGH	7.8 HIGH
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.