CVE-2026-4499 D-Link DIR-820LW SSDP ssdpcgi_main os command injection

A vulnerability was determined in D-Link DIR-820LW 2.03. Affected is the function ssdpcgimain of the component SSDP. Executing a manipulation can lead to os command injection. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized...

EUVD-2017-14151

Malware in sbrugna...

CVE-2021-35393

Realtek Jungle SDK version v2.x up to v3.4.14B provides a 'WiFi Simple Config' server that implements both UPnP and SSDP protocols. The binary is usually named wscd or miniupnpd and is the successor to miniigd. The server is vulnerable to a stack buffer overflow vulnerability that is present due ...

CVE-2021-35392

Realtek Jungle SDK (Realtek RTL819xD-based devices) exposes a vulnerable WiFi Simple Config server (Go-Ahead/Boa HTTP web server variants) that implements UPnP/SSDP. CVE-2021-35392 describes a heap overflow in handling SSDP NOTIFY messages crafted from M-SEARCH ST headers, affecting Realtek Jungl...

PT-2021-3800 · Realtek · Realtek Jungle Sdk

Name of the Vulnerable Software and Affected Versions: Realtek Jungle SDK versions v2.x up to v3.4.14B Description: The issue is caused by a heap buffer overflow in the WiFi Simple Config server, which implements both UPnP and SSDP protocols. This overflow is due to the unsafe crafting of SSDP...

VulnCheck KEV: CVE-2012-5958

Stack-based buffer overflow in the uniqueservicename function in ssdp/ssdpserver.c in the SSDP parser in the portable SDK for UPnP Devices aka libupnp, formerly the Intel SDK for UPnP devices before 1.6.18 allows remote attackers to execute arbitrary code via a UDP packet with a crafted...

UPNPD M-SEARCH ssdp:discover Reflection Denial of Service Exploit

Exploit for multiple platform in category dos / poc !/usr/bin/perl upnpd M-SEARCH ssdp:discover reflection Copyright 2015 c Todor Donev email protected http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg The SSDP protocol can discover Plug & Play devices, with uPnP Universal...

UPNPD M-SEARCH ssdp:discover Reflection Denial Of Service

!/usr/bin/perl upnpd M-SEARCH ssdp:discover reflection Copyright 2015 c Todor Donev [email protected] http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg The SSDP protocol can discover Plug & Play devices, with uPnP Universal Plug and Play. SSDP is HTTP like protocol and...

UPNPD M-SEARCH - ssdp:discover Reflection Denial of Service

UPNPD M-SEARCH - ssdp:discover Reflection Denial of Service !/usr/bin/perl upnpd M-SEARCH ssdp:discover reflection Copyright 2015 c Todor Donev [email protected] http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg The SSDP protocol can discover Plug & Play devices, with...

INFOMARK IMW-C920W miniupnpd 1.0 - Denial of Service Vulnerability

MiniUPNPd version 1.0 remote denial of service exploit. !/usr/bin/perl miniupnpd/1.0 remote denial of service exploit Copyright 2015 c Todor Donev email protected http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg The SSDP protocol can discover Plug & Play devices, with uPnP...

INFOMARK IMW-C920W MiniUPnPd 1.0 - Denial of Service

INFOMARK IMW-C920W MiniUPnPd 1.0 - Denial of Service !/usr/bin/perl miniupnpd/1.0 remote denial of service exploit Copyright 2015 c Todor Donev [email protected] http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg The SSDP protocol can discover Plug & Play devices, with...

INFOMARK IMW-C920W MiniUPnPd 1.0 - Denial of Service

!/usr/bin/perl miniupnpd/1.0 remote denial of service exploit Copyright 2015 c Todor Donev [email protected] http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg The SSDP protocol can discover Plug & Play devices, with uPnP Universal Plug and Play. SSDP is HTTP like protoc...

Arbor: DDoS Attacks Getting Bigger as Reflection Increases

Reflected distributed denial of service DDoS attacks continue to increase, particularly among large scale DDoS events, but it’s a relatively new type of amplification attack which exploits the Simple Service Directory Protocol SSDP that has emerged in a new Arbor Networks report. Data from the...

Portable SDK for UPnP Devices libupnp Root Device Service Name Stack Buffer Overflow (CVE-2012-5960)

A stack buffer overflow vulnerability exists in Intel's SDK for UPnP and the Portable SDK for UPnP. The vulnerability is due to a boundary error while parsing service name URIs in the function called from the SSDP protocol parser. A remote attacker can exploit this vulnerability to execute...

Portable SDK for UPnP Devices libupnp UUID Service Name Stack Buffer Overflow (CVE-2012-5959)

A stack buffer overflow vulnerability exists in Intel's SDK for UPnP and the Portable SDK for UPnP. The vulnerability is due to a boundary error while parsing UUID: service name URIs in the uniqueservicename function called from the SSDP protocol parser. Remote unauthenticated attackers can explo...