2 matches found
Ubiquiti EdgeRouters 缓冲区错误漏洞
Ubiquiti EdgeRouters is a series of edge routers from Ubiquiti USA. A security vulnerability exists in Ubiquiti EdgeRouters and Aircubes that stems from the presence of a heap overflow vulnerability that allows a malicious actor to interrupt UPnP services on the device...
gupnp: allows DNS rebinding which could result in tricking browser into triggering actions against local UPnP services
A flaw was found in gupnp. DNS rebinding can occur when a victim's browser is used by a remote web server to trigger actions against local UPnP services including data exfiltration, data tempering, and other exploits. The highest threat from this vulnerability is to data confidentiality and...