Miniupnp Project : Security Vulnerabilities, CVEs,
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at ngiflib.c.
Max CVSS
5.5
EPSS Score
0.04%
Published
2023-07-19
Updated
2023-07-28
ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, GetByte() reads memory buffer without checking the boundary.
Max CVSS
8.8
EPSS Score
0.19%
Published
2021-08-27
Updated
2021-09-07
ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108 in NGIFLIB_NO_FILE mode, GetByteStr() copy memory buffer without checking the boundary.
Max CVSS
8.8
EPSS Score
0.19%
Published
2021-08-27
Updated
2021-09-07
An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop).
Max CVSS
5.5
EPSS Score
0.04%
Published
2023-08-11
Updated
2023-08-16
ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor in ngiflib.c.
Max CVSS
8.8
EPSS Score
0.21%
Published
2020-01-02
Updated
2020-01-08
A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in copyIPv6IfDifferent in pcpserver.c.
Max CVSS
7.5
EPSS Score
0.26%
Published
2019-05-15
Updated
2020-09-28
A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port.
Max CVSS
7.5
EPSS Score
0.34%
Published
2019-05-15
Updated
2020-09-28
A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for int_port.
Max CVSS
7.5
EPSS Score
0.34%
Published
2019-05-15
Updated
2020-09-28
The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.
Max CVSS
7.5
EPSS Score
0.61%
Published
2019-05-15
Updated
2019-05-27
ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif.
Max CVSS
7.5
EPSS Score
0.07%
Published
2018-06-01
Updated
2019-10-03
GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault.
Max CVSS
6.5
EPSS Score
0.09%
Published
2018-05-31
Updated
2018-07-13
ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor.
Max CVSS
9.8
EPSS Score
0.25%
Published
2018-05-31
Updated
2018-06-28
ngiflib.c in MiniUPnP ngiflib 0.4 has a stack-based buffer overflow in DecodeGifImg.
Max CVSS
9.8
EPSS Score
0.25%
Published
2018-05-31
Updated
2020-08-24
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file, a different vulnerability than CVE-2018-10677.
Max CVSS
8.8
EPSS Score
0.28%
Published
2018-05-03
Updated
2020-08-24
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file.
Max CVSS
8.8
EPSS Score
0.58%
Published
2018-05-02
Updated
2020-08-24
Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact
Max CVSS
7.8
EPSS Score
0.11%
Published
2018-01-03
Updated
2019-05-30
Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through v2.0 allows remote attackers to cause a denial of service or possibly have unspecified other impact.
Max CVSS
9.8
EPSS Score
6.14%
Published
2017-05-11
Updated
2020-04-30
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (invalid free and daemon crash) via vectors related to error handling.
Max CVSS
5.5
EPSS Score
0.04%
Published
2017-03-24
Updated
2021-04-19
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (out-of-bounds memory access and daemon crash) via vectors involving a negative length value.
Max CVSS
5.5
EPSS Score
0.04%
Published
2017-03-24
Updated
2021-04-23
Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the MiniUPnP client (aka MiniUPnPc) before 1.9.20150917 allows remote UPNP servers to cause a denial of service (application crash) and possibly execute arbitrary code via an "oversized" XML element name.
Max CVSS
6.8
EPSS Score
0.38%
Published
2015-11-02
Updated
2019-06-18
The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote attackers to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read.
Max CVSS
5.0
EPSS Score
0.59%
Published
2014-09-11
Updated
2020-09-28
MiniUPnPd has information disclosure use of snprintf()
Max CVSS
7.5
EPSS Score
2.46%
Published
2019-11-01
Updated
2019-11-04
Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (incorrect memory copy) via a SOAPAction header that lacks a " (double quote) character, a different vulnerability than CVE-2013-0230.
Max CVSS
7.8
EPSS Score
0.80%
Published
2013-01-31
Updated
2015-10-08
The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction header that lacks a # (pound sign) character, a different vulnerability than CVE-2013-0230.
Max CVSS
7.8
EPSS Score
0.74%
Published
2013-01-31
Updated
2015-10-08
CVE-2013-0230
Public exploit
Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to execute arbitrary code via a long quoted method.
Max CVSS
10.0
EPSS Score
88.12%
Published
2013-01-31
Updated
2016-12-08