Podatność CVE-2013-0230

Podatność CVE-2013-0230

Publikacja: 2013-01-31 Modyfikacja: 2013-02-01

Opis:

	Tytuł	Autor	Data
High	MiniUPnPd 1.0 Stack Buffer Overflow Remote Code Execution	Dejan Lukan	05.06.2013
Med.	MiniUPnPd 1.0 Stack Overflow RCE for AirTies RT Series	Onur ALANBEL	28.04.2015
Med.	MiniUPNPd 1.0 Remote Denial Of Service	Todor Donev	08.07.2015

Typ:

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
10/10	10/10	10/10

Affected software
Miniupnp project -> Miniupnpd

http://www.securityfocus.com/bid/57608

https://community.rapid7.com/community/infosec/blog/2013/01/29/security-flaws-in-universal-plug-and-play-unplug-dont-play

https://community.rapid7.com/servlet/JiveServlet/download/2150-1-16596/SecurityFlawsUPnP.pdf

https://community.rapid7.com/servlet/servlet.FileDownload?file=00P1400000cCaFb

https://www.exploit-db.com/exploits/36839/