Portable UPnP SDK (aka libupnp) 1.12.1 and previous versions allows remote malicious users to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libupnp project libupnp |
||
debian debian linux 8.0 |