OVAL Reference oval:com.ubuntu.bionic:def:20184059000

Oval Definition:

oval:com.ubuntu.bionic:def:20184059000

Revision Date:	2019-03-21	Version:	1
Title:	CVE-2018-4059 on Ubuntu 18.04 LTS (bionic) - medium.
Description:	An exploitable unsafe default configuration vulnerability exists in the TURN server function of coTURN prior to version 4.5.0.9. By default, the TURN server runs an unauthenticated telnet admin portal on the loopback interface. This can provide administrator access to the TURN server configuration, which can lead to additional attacks. An attacker who can get access to the telnet port can gain administrator access to the TURN server.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-4059
Platform(s):	Ubuntu 18.04 LTS	Product(s):
Definition Synopsis
Ubuntu 18.04 LTS (bionic) is installed. AND The 'coturn' package in bionic was vulnerable but has been fixed (note: '4.5.0.7-1ubuntu2.18.04.1').