184 matches found
CVE-2019-12110
An AddPortMapping Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in upnpredirect.c...
CVE-2019-12109
CVE-2019-12109 is a denial-of-service vulnerability in MiniUPnP MiniUPnPd (upnpd) up to version 2.1, caused by a NULL pointer dereference in GetOutboundPinholeTimeout (upnpsoap.c) when handling rem_port. Public references (Ubuntu/Debian advisories and OSS/OSSN notes) confirm the issue and provide...
CVE-2019-12109
A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for remport...
CVE-2019-12109
A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for remport...
CVE-2019-12108
CVE-2019-12108 affects MiniUPnPd (miniupnpd) with a NULL pointer dereference in GetOutboundPinholeTimeout (upnpsoap.c for int_port), causing a Denial of Service. Connected sources reference Ubuntu USN-4542-1 and Debian DLA-1811-1 describing vulnerable releases and patches. Affected product: MiniU...
CVE-2019-12108
A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for intport...
CVE-2019-12107
The upnpeventprepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value...
CVE-2019-12107
CVE-2019-12107 affects MiniUPnP MiniUPnPd up to version 2.1. The issue is in upnp_event_prepare (upnpevents.c) where improper validation of the snprintf return value can leak information from the heap. It enables a remote attacker over the network to cause a information leak. Exploitation details...
CVE-2019-12107
The upnpeventprepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value...
CVE-2019-12107
The upnpeventprepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value...
MiniUPnP MiniUPnPd Code Issue Vulnerability
MiniSSDPd is a daemon for managing SSDPs on Posix systems. MiniUPnP A code issue vulnerability exists in the copyIPv6IfDifferent of the pcpserver.c file in MiniUPnPd version 2.1. The vulnerability stems from an improper design or implementation during code development of a network system or...
MiniUPnP MiniUPnPd Denial of Service Vulnerability
MiniUPnP is a UPnP tool that can be used for embedded systems. MiniUPnP A denial of service detail exists in MiniUPnPd. The vulnerability stems from improper design or implementation during code development of a networked system or product. An attacker can exploit the vulnerability to launch a...
Next from the printer coming out will be?-- The theory of the UPnP using the status quo and risk-vulnerability warning-the black bar safety net
Earlier this year, Chromecast streaming dongle, Google Home devices and smart TV users are forced to harvest a strip from the youtube PewDiePie channel promotion information. This hijacking is said by the tube top traffic UP the main are a fan of the battle for the thrown. Reported that hackers...
MiniUPnPd 2.1 - Out-of-Bounds Read Exploit
!/usr/bin/python3 miniupnpd 0: self.server.notify += line line = self.rfile.read1 except: pass self.wfile.writeb"HTTP/1.1 200 OK\r\n\r\n" def splash: print" miniupnpd '.formatargs.callbackip,args.callbackport,callbackuri, 'Timeout': 'Second-20' server = socketserver.TCPServerargs.callbackip,...
MiniUPnPd 2.1 Out-Of-Bounds Read
!/usr/bin/python3 miniupnpd 0: self.server.notify += line line = self.rfile.read1 except: pass self.wfile.writeb"HTTP/1.1 200 OK\r\n\r\n" def splash: print" miniupnpd '.formatargs.callbackip,args.callbackport,callbackuri, 'Timeout': 'Second-20' server = socketserver.TCPServerargs.callbackip,...
MiniUPnPd 2.1 - Out-of-Bounds Read
!/usr/bin/python3 miniupnpd 0: self.server.notify += line line = self.rfile.read1 except: pass self.wfile.writeb"HTTP/1.1 200 OK\r\n\r\n" def splash: print" miniupnpd '.formatargs.callbackip,args.callbackport,callbackuri, 'Timeout': 'Second-20' server = socketserver.TCPServerargs.callbackip,...
MiniUPnPd 2.1 - Out-of-Bounds Read
MiniUPnPd 2.1 - Out-of-Bounds Read !/usr/bin/python3 miniupnpd 0: self.server.notify += line line = self.rfile.read1 except: pass self.wfile.writeb"HTTP/1.1 200 OK\r\n\r\n" def splash: print" miniupnpd '.formatargs.callbackip,args.callbackport,callbackuri, 'Timeout': 'Second-20' server =...
MiniUPnP <= 2.0 DoS Vulnerability (CVE-2017-1000494)
Uninitialized stack variable vulnerability in NameValueParserEndElt upnpreplyparse.c in miniupnpd allows an attacker to cause Denial of Service Segmentation fault and Memory Corruption or possibly have unspecified other impact. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might...
MiniUPnP Memory Corruption Vulnerability
miniupnpd is a UPnP IGD Internet Gateway Device Protocol implementation of the MiniUPnP project. A security vulnerability exists in the 'NameValueParserEndElt' function in the upnpreplyparse.c file in versions of miniupnpd prior to 2.0. An attacker can exploit this vulnerability to cause a denial...
DEBIAN-CVE-2017-1000494
Uninitialized stack variable vulnerability in NameValueParserEndElt upnpreplyparse.c in miniupnpd 2.0 allows an attacker to cause Denial of Service Segmentation fault and Memory Corruption or possibly have unspecified other impact...