Filtered by vendor Miniupnp Project Subscriptions
Total 32 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-12106 1 Miniupnp Project 1 Miniupnpd 2024-11-21 N/A
The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.
CVE-2018-11657 1 Miniupnp Project 1 Ngiflib 2024-11-21 N/A
ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif.
CVE-2018-11578 1 Miniupnp Project 1 Ngiflib 2024-11-21 N/A
GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault.
CVE-2018-11576 1 Miniupnp Project 1 Ngiflib 2024-11-21 N/A
ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor.
CVE-2018-11575 1 Miniupnp Project 1 Ngiflib 2024-11-21 N/A
ngiflib.c in MiniUPnP ngiflib 0.4 has a stack-based buffer overflow in DecodeGifImg.
CVE-2018-10717 1 Miniupnp Project 1 Ngiflib 2024-11-21 N/A
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file, a different vulnerability than CVE-2018-10677.
CVE-2018-10677 1 Miniupnp Project 1 Ngiflib 2024-11-21 N/A
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file.
CVE-2017-8798 1 Miniupnp Project 1 Miniupnpd 2024-11-21 N/A
Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through v2.0 allows remote attackers to cause a denial of service or possibly have unspecified other impact.
CVE-2017-1000494 1 Miniupnp Project 1 Miniupnpd 2024-11-21 N/A
Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact
CVE-2016-3179 1 Miniupnp Project 1 Minissdpd 2024-11-21 5.5 Medium
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (invalid free and daemon crash) via vectors related to error handling.
CVE-2016-3178 1 Miniupnp Project 1 Minissdpd 2024-11-21 5.5 Medium
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (out-of-bounds memory access and daemon crash) via vectors involving a negative length value.
CVE-2013-2600 2 Debian, Miniupnp Project 2 Debian Linux, Miniupnpd 2024-11-21 7.5 High
MiniUPnPd has information disclosure use of snprintf()