Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5965

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2012-5965
Last Modified 01 Sep 2015 01:08:01
Published 31 Jan 2013 04:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-5965

Summary

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.3.1 allows remote attackers to execute arbitrary code via a long DeviceType (aka urn device) field in a UDP packet.

Vulnerable Systems

Application

  • Portable Sdk For Upnp Project Portable Sdk For Upnp 1.3.1


References

CERT-VN - VU#922681

MISC - https://community.rapid7.com/servlet/JiveServlet/download/2150-1-16596/SecurityFlawsUPnP.pdf

MISC - https://community.rapid7.com/community/infosec/blog/2013/01/29/security-flaws-in-universal-plug-and-play-unplug-dont-play

CISCO - 20130129 Portable SDK for UPnP Devices Contains Buffer Overflow Vulnerabilities

CONFIRM - http://pupnp.sourceforge.net/ChangeLog

DEBIAN - DSA-2615

DEBIAN - DSA-2614

CONFIRM - https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0037

MANDRIVA - MDVSA-2013:098

MISC - https://community.rapid7.com/servlet/servlet.FileDownload?file=00P1400000cCaFb

BID - 57602


Last Updated: 27 May 2016 11:08:40