CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Mageia•added 2018/05/19 8:56 p.m.•29 views

Updated miniupnpc packages fix security vulnerability

It was discovered that miniupnpc contained a heap buffer overflow in parseelt minixml.c - no CVE assigned. It was discovered that miniupnpc also contained a memory corruption invalid read, SIGSEGV in NameValueParserEndElt upnpreplyparse.c while handling two consecutive malformed SOAP requests...

7.8CVSS3.3AI score0.0008EPSS

Exploits1References3

OpenVAS•added 2018/02/23 12:0 a.m.•35 views

MiniUPnP <= 2.0 DoS Vulnerability (CVE-2017-1000494)

Uninitialized stack variable vulnerability in NameValueParserEndElt upnpreplyparse.c in miniupnpd allows an attacker to cause Denial of Service Segmentation fault and Memory Corruption or possibly have unspecified other impact. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might...

7.8CVSS7.9AI score0.0008EPSS

Exploits1References1

Prion•added 2018/01/03 2:29 p.m.•17 views

Memory corruption

Uninitialized stack variable vulnerability in NameValueParserEndElt upnpreplyparse.c in miniupnpd 2.0 allows an attacker to cause Denial of Service Segmentation fault and Memory Corruption or possibly have unspecified other impact...

4.6CVSS7.9AI score0.0008EPSS

Exploits1References4Affected Software1

OSV•added 2018/01/03 2:29 p.m.•31 views

CVE-2017-1000494

7.8CVSS8.3AI score

Exploits0References4

CVE•added 2018/01/03 2:0 p.m.•220 views

CVE-2017-1000494

CVE-2017-1000494 affects MiniUPnPd (miniupnpd) versions prior to 2.0, due to an uninitialized stack variable in NameValueParserEndElt (upnpreplyparse.c). This leads to Denial of Service (segmentation fault/memory corruption) and may have other impacts. Public advisories confirm remediation by upg...

7.8CVSS7.7AI score0.0008EPSS

Exploits1References4Affected Software1