Intrusion Prevention

Portable.SDK.UPnP.SSDP.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in libupnp.
This flaw is due to a stack-based buffer overflow in the UPnP (Universal Plug and Play) service when handling an malicious request. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.

Affected Products

libupnp versions prior to 1.6.18

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply patch available from the website.
http://sourceforge.net/projects/pupnp/files/

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://www.kb.cert.org/vuls/id/922681

ID	34576
Created	Feb 06, 2013
Updated	Nov 15, 2021
CVE ID
Risk
Exploit Prediction Score	88.62%
Default Action	drop
Active
Affected OS	All
Affected App	Other
Profile Type	Buffer Errors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Portable.SDK.UPnP.SSDP.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Portable.SDK.UPnP.SSDP.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

References

Threat Intelligence
Center