Simple Service Discovery Protocol Responder Project: >> Simple Service Discovery Protocol Responder >> 1.5 Security Vulnerabilities
SSDP Responder 1.x through 1.5 mishandles incoming network messages, leading to a stack-based buffer overflow by 1 byte. This results in a crash of the server, but only when strict stack checking is enabled. This is caused by an off-by-one error in ssdp_recv in ssdpd.c.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-07-28