Signature Detail
Short Name |
HTTP:MISC:PLATINUM-UPNP-LIB-BO |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Platinum UPnP Library Post UPnP Buffer Overflow |
Release Date |
2012/12/17 |
Update Number |
2211 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Platinum UPnP Library Post UPnP Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Platinum UPnP Library. A successful attack can lead to a buffer overflow and arbitrary remote code execution.
Extended Description
Platinum UPnP is prone to a buffer-overflow vulnerability because it fails to properly bounds check user-supplied data. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Successful exploits will compromise the application that uses the library and possibly the underlying computer. Failed exploit attempts will result in a denial-of-service condition. Platinum UPnP 0.6.0 is vulnerable; other versions may also be affected.
Affected Products
- Plutinosoft Platinum UPnP 0.6.0
References
- BugTraq: 44522