Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2016-6255
Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.567
EPSS Ranking
98.0%
CVSS Severity
CVSS v3 Score
7.5
CVSS v2 Score
5.0
References
http://www.debian.org/security/2016/dsa-3736
http://www.openwall.com/lists/oss-security/2016/07/18/13
http://www.openwall.com/lists/oss-security/2016/07/20/5
http://www.securityfocus.com/bid/92050
https://github.com/mjg59/pupnp-code/commit/be0a01bdb83395d9f3a5ea09c1308a4f1a972cbd
https://security.gentoo.org/glsa/201701-52
https://sourceforge.net/p/pupnp/code/ci/master/tree/ChangeLog
https://twitter.com/mjg59/status/755062278513319936
https://www.exploit-db.com/exploits/40589/
https://www.tenable.com/security/research/tra-2017-10
http://www.debian.org/security/2016/dsa-3736
http://www.openwall.com/lists/oss-security/2016/07/18/13
http://www.openwall.com/lists/oss-security/2016/07/20/5
http://www.securityfocus.com/bid/92050
https://github.com/mjg59/pupnp-code/commit/be0a01bdb83395d9f3a5ea09c1308a4f1a972cbd
https://security.gentoo.org/glsa/201701-52
https://sourceforge.net/p/pupnp/code/ci/master/tree/ChangeLog
https://twitter.com/mjg59/status/755062278513319936
https://www.exploit-db.com/exploits/40589/
https://www.tenable.com/security/research/tra-2017-10
Products affected by CVE-2016-6255
Libupnp Project
»
Libupnp
»
Version:
1.3.1
cpe:2.3:a:libupnp_project:libupnp:1.3.1
Libupnp Project
»
Libupnp
»
Version:
1.4.0
cpe:2.3:a:libupnp_project:libupnp:1.4.0
Libupnp Project
»
Libupnp
»
Version:
1.4.1
cpe:2.3:a:libupnp_project:libupnp:1.4.1
Libupnp Project
»
Libupnp
»
Version:
1.4.2
cpe:2.3:a:libupnp_project:libupnp:1.4.2
Libupnp Project
»
Libupnp
»
Version:
1.4.3
cpe:2.3:a:libupnp_project:libupnp:1.4.3
Libupnp Project
»
Libupnp
»
Version:
1.4.4
cpe:2.3:a:libupnp_project:libupnp:1.4.4
Libupnp Project
»
Libupnp
»
Version:
1.4.5
cpe:2.3:a:libupnp_project:libupnp:1.4.5
Libupnp Project
»
Libupnp
»
Version:
1.4.6
cpe:2.3:a:libupnp_project:libupnp:1.4.6
Libupnp Project
»
Libupnp
»
Version:
1.4.7
cpe:2.3:a:libupnp_project:libupnp:1.4.7
Libupnp Project
»
Libupnp
»
Version:
1.6.0
cpe:2.3:a:libupnp_project:libupnp:1.6.0
Libupnp Project
»
Libupnp
»
Version:
1.6.1
cpe:2.3:a:libupnp_project:libupnp:1.6.1
Libupnp Project
»
Libupnp
»
Version:
1.6.10
cpe:2.3:a:libupnp_project:libupnp:1.6.10
Libupnp Project
»
Libupnp
»
Version:
1.6.11
cpe:2.3:a:libupnp_project:libupnp:1.6.11
Libupnp Project
»
Libupnp
»
Version:
1.6.12
cpe:2.3:a:libupnp_project:libupnp:1.6.12
Libupnp Project
»
Libupnp
»
Version:
1.6.13
cpe:2.3:a:libupnp_project:libupnp:1.6.13
Libupnp Project
»
Libupnp
»
Version:
1.6.14
cpe:2.3:a:libupnp_project:libupnp:1.6.14
Libupnp Project
»
Libupnp
»
Version:
1.6.15
cpe:2.3:a:libupnp_project:libupnp:1.6.15
Libupnp Project
»
Libupnp
»
Version:
1.6.16
cpe:2.3:a:libupnp_project:libupnp:1.6.16
Libupnp Project
»
Libupnp
»
Version:
1.6.17
cpe:2.3:a:libupnp_project:libupnp:1.6.17
Libupnp Project
»
Libupnp
»
Version:
1.6.18
cpe:2.3:a:libupnp_project:libupnp:1.6.18
Libupnp Project
»
Libupnp
»
Version:
1.6.19
cpe:2.3:a:libupnp_project:libupnp:1.6.19
Libupnp Project
»
Libupnp
»
Version:
1.6.2
cpe:2.3:a:libupnp_project:libupnp:1.6.2
Libupnp Project
»
Libupnp
»
Version:
1.6.20
cpe:2.3:a:libupnp_project:libupnp:1.6.20
Libupnp Project
»
Libupnp
»
Version:
1.6.3
cpe:2.3:a:libupnp_project:libupnp:1.6.3
Libupnp Project
»
Libupnp
»
Version:
1.6.4
cpe:2.3:a:libupnp_project:libupnp:1.6.4
Libupnp Project
»
Libupnp
»
Version:
1.6.5
cpe:2.3:a:libupnp_project:libupnp:1.6.5
Libupnp Project
»
Libupnp
»
Version:
1.6.6
cpe:2.3:a:libupnp_project:libupnp:1.6.6
Libupnp Project
»
Libupnp
»
Version:
1.6.7
cpe:2.3:a:libupnp_project:libupnp:1.6.7
Libupnp Project
»
Libupnp
»
Version:
1.6.8
cpe:2.3:a:libupnp_project:libupnp:1.6.8
Libupnp Project
»
Libupnp
»
Version:
1.6.9
cpe:2.3:a:libupnp_project:libupnp:1.6.9
Debian
»
Debian Linux
»
Version:
8.0
cpe:2.3:o:debian:debian_linux:8.0
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved