Short Name |
HTTP:MISC:PLATINUM-UPNP-LIB-BO |
---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Platinum UPnP Library Post UPnP Buffer Overflow |
Release Date |
2012/12/17 |
Update Number |
2211 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
This signature detects attempts to exploit a known vulnerability in the Platinum UPnP Library. A successful attack can lead to a buffer overflow and arbitrary remote code execution.
Platinum UPnP is prone to a buffer-overflow vulnerability because it fails to properly bounds check user-supplied data. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Successful exploits will compromise the application that uses the library and possibly the underlying computer. Failed exploit attempts will result in a denial-of-service condition. Platinum UPnP 0.6.0 is vulnerable; other versions may also be affected.