Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction header that lacks a # (pound sign) character, a different vulnerability than CVE-2013-0230.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MiniUPnP MiniUPnPd ‘ExecuteSoapAction’函数拒绝服务漏洞
Vulnerability Description
MiniUPnP Client(又名MiniUPnPc)是MiniUPnP项目开发的一个能够实现应用程序使用支持UPnP的Internet网关设备转发端口的库。 MiniUPnP MiniUPnPd 1.0版本中的HTTP服务器中的SOAPAction处理器中的ExecuteSoapAction函数中存在漏洞。通过缺少#字符的SOAPAction头,远程攻击者利用该漏洞导致拒绝服务(空指针引用和服务器崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A