MiniUPnP MiniUPnPd ProcessSSDPRequest Denial of Service (CVE-2013-0229)

A denial of service vulnerability has been reported in MiniUPnP MiniUPnPd. The vulnerability is due to a boundary error in ProcessSSDPRequest function. A remote attacker can exploit this vulnerability by sending specially crafted packet to the target. Successful exploitation could cause the servi...

CVE-2013-0229

The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd before 1.4 allows remote attackers to cause a denial of service service crash via a crafted request that triggers a buffer over-read...

CVE-2013-0229

CVE-2013-0229 is a vulnerability in MiniUPnP MiniUPnPd prior to 1.4 where the ProcessSSDPRequest function (minissdp.c) contains a boundary error that can trigger a buffer over-read. A remote attacker can send a crafted SSDP/M-SEARCH request to cause a denial of service (service crash). The issue ...

MiniUPnP < 1.4 Multiple Vulnerabilities

According to its banner, the version of MiniUPnP running on the remote host is prior to 1.4. It is, therefore, affected by the following vulnerabilities : - An out-of-bounds read error exists in the ProcessSSDPRequest function in file minissdp.c that allows an unauthenticated, remote attacker to...