7 matches found
CVE-2019-12107
creationtimestamp| type| source ---|---|--- 2024-11-18 03:26:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113501822965987817 2024-11-18 03:29:37+00:00| seen| https://infosec.exchange/users/cve/statuses/113501836193686265...
Ubuntu 16.04 LTS : MiniUPnPd vulnerabilities (USN-4542-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4542-1 advisory. It was discovered that MiniUPnPd did not properly validate callback addresses. A remote attacker could possibly use this issue to expose sensitive...
Ubuntu: Security Advisory (USN-4542-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4542-1: MiniUPnPd vulnerabilities
It was discovered that MiniUPnPd did not properly validate callback addresses. A remote attacker could possibly use this issue to expose sensitive information. CVE-2019-12107 It was discovered that MiniUPnPd incorrectly handled unpopulated user XML input. An attacker could possibly use this issue...
Fedora 31 : miniupnpd (2019-0a26e06dd5)
Security patches. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc...
DEBIAN-CVE-2019-12107
The upnpeventprepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value...
CVE-2019-12107
CVE-2019-12107 affects MiniUPnP MiniUPnPd up to version 2.1. The issue is in upnp_event_prepare (upnpevents.c) where improper validation of the snprintf return value can leak information from the heap. It enables a remote attacker over the network to cause a information leak. Exploitation details...