3 matches found
IoT Zero-Days – Is Belkin WeMo Smart Plug the Next Malware Target?
ARCHIVED STORY IoT Zero-Days – Is Belkin WeMo Smart Plug the Next Malware Target? By Steve Povolny · April 18, 2019 Effective malware is typically developed with intention, targeting specific victims using either known or unknown vulnerabilities to achieve its primary functions. In this blog, we...
Belkin Wemo Insight Smart Plug Buffer Overflow (CVE-2018-6692)
A buffer overflow vulnerability exists in Belkin Wemo Insight Smart Plug. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
CVE-2018-6692
CVE-2018-6692 describes a stack-based buffer overflow in Belkin’s Wemo Insight Smart Plug, specifically in the library libUPnPHndlr.so. The flaw can be triggered by crafting an HTTP POST to UPnP endpoints (notably through the EnergyPerUnitCostVersion field inside a SOAP/UPnP payload), leading to ...