CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-0230

Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to execute arbitrary code via a long quoted method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.801

EPSS Ranking 99.1%

CVSS Severity

CVSS v2 Score 10.0

References

http://www.securityfocus.com/bid/57608
https://community.rapid7.com/community/infosec/blog/2013/01/29/security-flaws-in-universal-plug-and-play-unplug-dont-play
https://community.rapid7.com/servlet/JiveServlet/download/2150-1-16596/SecurityFlawsUPnP.pdf
https://community.rapid7.com/servlet/servlet.FileDownload?file=00P1400000cCaFb
https://www.exploit-db.com/exploits/36839/
http://www.securityfocus.com/bid/57608
https://community.rapid7.com/community/infosec/blog/2013/01/29/security-flaws-in-universal-plug-and-play-unplug-dont-play
https://community.rapid7.com/servlet/JiveServlet/download/2150-1-16596/SecurityFlawsUPnP.pdf
https://community.rapid7.com/servlet/servlet.FileDownload?file=00P1400000cCaFb
https://www.exploit-db.com/exploits/36839/

Products affected by CVE-2013-0230

Miniupnp Project » Miniupnpd » Version: 1.0

cpe:2.3:a:miniupnp_project:miniupnpd:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-0230

Products

Pricing

Contact Us