Lucene search
K

148 matches found

Tenable Nessus
Tenable Nessus
added 2017/01/23 12:0 a.m.36 views

GLSA-201701-52 : libupnp: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201701-52 libupnp: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libupnp. Please review the CVE identifiers referenced below for details. Impact : A remote attack could arbitrarily write files to a user...

9.8CVSS8.4AI score0.26818EPSS
Exploits4References4
OSV
OSV
added 2017/01/03 10:5 p.m.8 views

MGASA-2017-0002 Updated libupnp packages fix security vulnerability

Scott Tenaglia discovered a heap buffer overflow vulnerability, that can lead to denial of service or remote code execution CVE-2016-8863...

9.8CVSS9.8AI score0.08488EPSS
Exploits0References3
Mageia
Mageia
added 2017/01/03 10:5 p.m.37 views

Updated libupnp packages fix security vulnerability

Scott Tenaglia discovered a heap buffer overflow vulnerability, that can lead to denial of service or remote code execution CVE-2016-8863...

9.8CVSS4AI score0.08488EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/12/28 12:0 a.m.52 views

FreeBSD : upnp -- multiple vulnerabilities (244c8288-cc4a-11e6-a475-bcaec524bf84)

Matthew Garett reports : Reported this to upstream 8 months ago without response, so: libupnp's default behaviour allows anyone to write to your filesystem. Seriously. Find a device running a libupnp based server Shodan says there's rather a lot, and POST a file to /testfile. Then GET /testfile...

9.8CVSS8.3AI score0.26818EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2016/12/20 12:0 a.m.43 views

Debian DSA-3736-1 : libupnp - security update

Two vulnerabilities were discovered in libupnp, a portable SDK for UPnP devices. - CVE-2016-6255 Matthew Garret discovered that libupnp by default allows any user to write to the filesystem of the host running a libupnp-based server application. - CVE-2016-8863 Scott Tenaglia discovered a heap...

9.8CVSS8.8AI score0.26818EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2016/12/20 12:0 a.m.35 views

Debian DLA-747-1 : libupnp security update

Scott Tenaglia discovered a heap-based buffer overflow in libupnp, a portable SDK for UPnP Devices. That can lead to denial of service or remote code execution. For Debian 7 'Wheezy', these problems have been fixed in version 1:1.6.17-1.2+deb7u2. We recommend that you upgrade your libupnp package...

9.8CVSS8.6AI score0.08488EPSS
Exploits0References4
Debian
Debian
added 2016/12/16 9:12 p.m.23 views

[SECURITY] [DLA 747-1] libupnp security update

Package : libupnp Version : 1:1.6.17-1.2+deb7u2 CVE ID : CVE-2016-8863 Debian Bug : 842093 Scott Tenaglia discovered a heap-based buffer overflow in libupnp, a portable SDK for UPnP Devices. That can lead to denial of service or remote code execution. For Debian 7 "Wheezy", these problems have be...

9.8CVSS10AI score0.08488EPSS
Exploits0
Debian
Debian
added 2016/12/16 1:1 p.m.32 views

[SECURITY] [DSA 3736-1] libupnp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3736-1 [email protected] https://www.debian.org/security/ Sebastien Delafond December 16, 2016 https://www.debian.org/security/faq -...

9.8CVSS9.9AI score0.26818EPSS
Exploits4
Debian
Debian
added 2016/12/16 1:1 p.m.72 views

[SECURITY] [DSA 3736-1] libupnp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3736-1 [email protected] https://www.debian.org/security/ Sebastien Delafond December 16, 2016 https://www.debian.org/security/faq -...

7.5CVSS1.1AI score0.26818EPSS
Exploits4
OSV
OSV
added 2016/12/16 12:0 a.m.28 views

DLA-747-1 libupnp - security update

Bulletin has no description...

9.8CVSS9.3AI score0.08488EPSS
Exploits0
OSV
OSV
added 2016/12/16 12:0 a.m.28 views

DSA-3736-1 libupnp - security update

Bulletin has no description...

9.8CVSS8.4AI score0.26818EPSS
Exploits4
OpenVAS
OpenVAS
added 2016/12/16 12:0 a.m.32 views

Debian Security Advisory DSA 3736-1 (libupnp - security update)

Two vulnerabilities were discovered in libupnp, a portable SDK for UPnP devices. CVE-2016-6255 Matthew Garret discovered that libupnp by default allows any user to write to the filesystem of the host running a libupnp-based server application. CVE-2016-8863 Scott Tenaglia discovered a heap buffer...

7.5CVSS0.3AI score0.26818EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2016/12/15 12:0 a.m.30 views

Debian: Security Advisory (DSA-3736-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.26818EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2016/11/08 12:0 a.m.41 views

libupnp Detection (UPnP)

UPnP based detection of libupnp. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.108015";...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2016/11/04 12:0 a.m.12 views

libupnp Detection (HTTP)

HTTP based detection of libupnp. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.106376";...

5.2AI score
Exploits0
0day.today
0day.today
added 2016/10/22 12:0 a.m.89 views

MiCasa VeraLite Remote Code Execution Exploit

Exploit for hardware platform in category remote exploits Exploit Title: MiCasa VeraLite Remote Code Execution Date: 10-20-2016 Software Link: http://getvera.com/controllers/veralite/ Exploit Author: Jacob Baines Contact: https://twitter.com/JuniorBaines CVE: CVE-2013-4863 & CVE-2016-6255 Platfor...

5CVSS0.1AI score0.26818EPSS
Exploits10
Packet Storm
Packet Storm
added 2016/10/21 12:0 a.m.81 views

MiCasa VeraLite Remote Code Execution

Exploit Title: MiCasa VeraLite Remote Code Execution Date: 10-20-2016 Software Link: http://getvera.com/controllers/veralite/ Exploit Author: Jacob Baines Contact: https://twitter.com/JuniorBaines CVE: CVE-2013-4863 & CVE-2016-6255 Platform: Hardware 1. Description A remote attacker can execute...

0.6AI score0.26818EPSS
Exploits10
Exploit DB
Exploit DB
added 2016/10/20 12:0 a.m.63 views

MiCasaVerde VeraLite - Remote Code Execution

Exploit Title: MiCasa VeraLite Remote Code Execution Date: 10-20-2016 Software Link: http://getvera.com/controllers/veralite/ Exploit Author: Jacob Baines Contact: https://twitter.com/JuniorBaines CVE: CVE-2013-4863 & CVE-2016-6255 Platform: Hardware 1. Description A remote attacker can execute...

9CVSS8.7AI score0.26818EPSS
Exploits10
myhack58
myhack58
added 2016/09/02 12:0 a.m.19 views

Old versions of the libupnp library security risk analysis-vulnerability warning-the black bar safety net

0x1 libupnp description libupnp is a Portable, Portable UPnP C language development package, UPnP is a network Protocol that allows the device to automatically search for and set. Libupnp to the latest version is 1. 6. 2 0, the compile time for 2 0 1 6 7 May 7, last version of 1. 6. 1 9, The...

Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/30 12:0 a.m.500 views

Portable SDK for UPnP Devices (libupnp) HTTP Arbitrary File Write

The Portable SDK for UPnP Devices libupnp running on the remote host is affected by a flaw that is triggered when handling HTTP POST or GET requests. An unauthenticated, remote attacker can exploit this to write arbitrary files to the web server file system. C Tenable Network Security, Inc...

7.5CVSS8.3AI score0.26818EPSS
Exploits4References3
Rows per page
Query Builder