CVE-2019-14899 Inferring and hijacking VPN-tunneled TCP connections. https://seclists.org/oss-sec/2019/q4/122?utm_source=dlvr.it&utm_medium=twitter …
-
-
The CVE does require access to intermediate infrastructure, but it can also be used to attack DNS on the VPN even more practically than TCP, which is more serious: https://seclists.org/oss-sec/2019/q4/124 …
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.