CVE-2019-12107
https://notcve.org/view.php?id=CVE-2019-12107
The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value. La función upnp_event_prepare en el archivo upnpevents.c en MiniUPnP MiniUPnPd hasta la versión 2.1, permite a un atacante remoto filtrar información desde la pila debido a la validación inapropiada de un valor de retorno snprintf. • https://github.com/miniupnp/miniupnp/commit/bec6ccec63cadc95655721bc0e1dd49dac759d94 https://lists.debian.org/debian-lts-announce/2019/05/msg00045.html https://usn.ubuntu.com/4542-1 https://www.vdoo.com/blog/security-issues-discovered-in-miniupnp • CWE-252: Unchecked Return Value •
CVE-2017-1000494
https://notcve.org/view.php?id=CVE-2017-1000494
Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact Vulnerabilidad de variable de pila no inicializada en NameValueParserEndElt (upnpreplyparse.c) en miniupnpd en versiones posteriores a la 2.0 permite que un atacante provoque una denegación de servicio (fallo de segmentación y corrupción de memoria) o que, posiblemente, cause otro tipo de impacto sin especificar. • https://github.com/miniupnp/miniupnp/commit/7aeb624b44f86d335841242ff427433190e7168a https://github.com/miniupnp/miniupnp/issues/268 https://lists.debian.org/debian-lts-announce/2019/05/msg00045.html https://usn.ubuntu.com/3562-1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-8798 – MiniUPnP MiniUPnPc < 2.0 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2017-8798
Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through v2.0 allows remote attackers to cause a denial of service or possibly have unspecified other impact. Error de entero sin signo en MiniUPnP MiniUPnPc versiónes desde la 1.4.20101221 hasta la 2.0 permite a atacantes remotos causar una denegación de servicio o posiblemente tener otro impacto no especificado. miniupnpc suffers from an integer signedness error when parsing a chunked encoded http response. • https://www.exploit-db.com/exploits/43501 http://miniupnp.free.fr/files/changelog.php?file=miniupnpc-2.0.20170509.tar.gz https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-8798 https://lists.debian.org/debian-lts-announce/2020/04/msg00027.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •