BOSE Soundtouch 30 Multicast DNS (mDNS) Responder Vulnerability

BOSE Soundtouch 30 Multicast DNS (mDNS) Responder Vulnerability

CVE-2017-6520 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:P

The Multicast DNS (mDNS) responder used in BOSE Soundtouch 30 inadvertently responds to IPv4 unicast queries with source addresses that are not link-local, which allows remote attackers to cause a denial of service (traffic amplification) or obtain potentially sensitive information via port-5353 UDP packets.

Learn more about our Web Application Penetration Testing UK.