Out-of-Bounds Read Vulnerability in MiniUPnP 1.9's getHTTPResponse Function

Out-of-Bounds Read Vulnerability in MiniUPnP 1.9's getHTTPResponse Function

CVE-2014-3985 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote attackers to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read.

Learn more about our Web Application Penetration Testing UK.