Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (incorrect memory copy) via a SOAPAction header that lacks a " (double quote) character, a different vulnerability than CVE-2013-0230.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MiniUPnP MiniUPnPd ‘ExecuteSoapAction’函数整数符号转换漏洞
Vulnerability Description
MiniUPnP Client(又名MiniUPnPc)是MiniUPnP项目开发的一个能够实现应用程序使用支持UPnP的Internet网关设备转发端口的库。 MiniUPnP MiniUPnPd 1.0版本中的HTTP服务器中的SOAPAction处理器中的ExecuteSoapAction函数中存在整数符号转换漏洞。通过缺少''(双引号)字符的SOAPAction头,远程攻击者利用该漏洞导致拒绝服务(不正确内存转换)。
CVSS Information
N/A
Vulnerability Type
N/A