Lucene search

GoogleOSV:RUSTSEC-2024-0341

HistoryMar 15, 2024 - 12:00 p.m.

Slow loris vulnerability with default configuration

2024-03-1512:00:00

Google

osv.dev

slow loris

vulnerability

tls

tlslistener

dos

attack

rust lang

configuration

upgrade

mitigation

tcpstream

connection listener

max handshakes

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON

tls-listener is a rust lang wrapper around a connection listener to support TLS. With the default configuration of tls-listener, a malicious user can open 6.4 TcpStreams a second, sending 0 bytes, and can trigger a DoS. The default configuration options make any public service using TlsListener::new() vulnerable to a slow-loris DoS attack. This impacts any publicly accessible service using the default configuration of tls-listener in versions prior to 0.10.0. Users are advised to upgrade. Users unable to upgrade may mitigate this by passing a large value, such as usize::MAX as the parameter to Builder::max_handshakes.

CPENameOperatorVersion
tls-listenerlt0.10.0

CPE	Name	Operator	Version
	tls-listener	lt	0.10.0

References

crates.io/crates/tls-listener

github.com/tmccombs/tls-listener/security/advisories/GHSA-2qph-qpvm-2qf7

rustsec.org/advisories/RUSTSEC-2024-0341.html

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON

Related for OSV:RUSTSEC-2024-0341