Short Name |
APP:UPNP:LIBUPNP-DSN-BOF |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Portable SDK for UPnP Devices libupnp Device Service Name Stack Buffer Overflow |
Release Date |
2013/05/23 |
Update Number |
2266 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects possible attempts to exploit a known vulnerability in the Portable SDK for UPnP Devices libupnp Device Service Name. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the system.
Per CERT's advisory additional products may be affected: http://www.kb.cert.org/vuls/id/922681 "Hundreds of vendors have used the libupnp library in their products, many of which are acting as the home routers for consumer networks. Any application linking to libupnp is likely to be affected"