The vulnerability of the parse_st() function in the UPnP service’s microprogramming software for Netgear WNR854T allows a hacker to execute arbitrary code.
The vulnerability of the parsest function in the UPnP service of Netgear’s WNR854T router software lies in the fact that the operation outside the buffer is allowed when processing the M-SEARCH request header value. Exploiting this vulnerability allows a remote attacker to execute arbitrary code ...