Lucene search
UbuntuUSN-2280-1HistoryJul 16, 2014 - 12:00 a.m.
MiniUPnPc vulnerability
2014-07-1600:00:00
ubuntu.com
31
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.8 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
78.6%
Releases
- Ubuntu 14.04 ESM
- Ubuntu 13.10
- Ubuntu 12.04
Packages
- miniupnpc - UPnP IGD client lightweight library client
Details
It was discovered that MiniUPnPc incorrectly handled certain buffer
lengths. A remote attacker could possibly use this issue to cause
applications using MiniUPnPc to crash, resulting in a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 14.04 | noarch | libminiupnpc8 | < 1.6-3ubuntu2.14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | libminiupnpc-dev | < 1.6-3ubuntu2.14.04.1 | UNKNOWN |
| Ubuntu | 14.04 | noarch | miniupnpc | < 1.6-3ubuntu2.14.04.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libminiupnpc8 | < 1.6-3ubuntu2.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libminiupnpc-dev | < 1.6-3ubuntu2.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | miniupnpc | < 1.6-3ubuntu2.13.10.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libminiupnpc8 | < 1.6-3ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libminiupnpc-dev | < 1.6-3ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | miniupnpc | < 1.6-3ubuntu1.1 | UNKNOWN |
References
Related
openvas
openvas
Ubuntu: Security Advisory (USN-2280-1)
2014-07-21 00:00:00
securityvulns
securityvulns
miniupnpc buffer overflow
2014-06-13 00:00:00
[oss-security] Re: CVE request: possible miniupnpc buffer overflow
2014-06-13 00:00:00
nvd
nvd
CVE-2014-3985
2014-09-11 18:55:06
gentoo
gentoo
MiniUPnPc: Buffer overflow
2017-01-17 00:00:00
nessus
nessus
openSUSE Security Update : miniupnpc (openSUSE-SU-2014:0815-1)
2014-06-19 00:00:00
Mandriva Linux Security Advisory : miniupnpc (MDVSA-2014:120)
2014-06-11 00:00:00
Ubuntu 14.04 LTS : MiniUPnPc vulnerability (USN-2280-1)
2014-07-17 00:00:00
ubuntucve
ubuntucve
CVE-2014-3985
2014-06-09 00:00:00
cve
cve
CVE-2014-3985
2014-09-11 18:55:06
prion
prion
Out-of-bounds
2014-09-11 18:55:00
cvelist
cvelist
CVE-2014-3985
2014-09-11 18:00:00
debiancve
debiancve
CVE-2014-3985
2014-09-11 18:55:06
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.8 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
78.6%
Related for USN-2280-1