Denial of Service Vulnerability in MiniUPnP MiniUPnPd 1.0

CVE-2013-1462 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (incorrect memory copy) via a SOAPAction header that lacks a " (double quote) character, a different vulnerability than CVE-2013-0230.

Learn more about our Web Application Penetration Testing UK.