3 matches found
CVE-2012-5959
CVE-2012-5959 is a stack-based buffer overflow in libupnp’s unique_service_name() in the SSDP parser, triggered by a long UDN containing :: in UDP SSDP requests. Affects portable SDK for UPnP Devices/libupnp before 1.6.18; remote attacker could cause arbitrary code execution. Public advisories sh...
CVE-2012-5961
CVE-2012-5961 affects the Portable SDK for UPnP Devices (libupnp) 1.3.1, where a stack-based buffer overflow in unique_service_name() in ssdp/ssdp_server.c allows remote attackers to execute arbitrary code via a long UDN in a UDP packet. Connected advisories show multiple vendor updates (e.g., op...
CVE-2012-5963
CVE-2012-5963 is a stack-based buffer overflow in the unique_service_name() function of the SSDP parser (libupnp portable SDK for UPnP Devices). The initial entry cites a vulnerability in UPnP devices’ UDP UDN field (no ::) in version 1.3.1. Connected advisories note multiple buffer-overflow issu...