CVE-2012-5961
Libupnp - Memory Corruption
Title source: ruleDescription
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.3.1 allows remote attackers to execute arbitrary code via a long UDN (aka device) field in a UDP packet.
Exploits (1)
References (15)
Scores
EPSS
0.7233
EPSS Percentile
98.8%
Details
CWE
CWE-119
Status
published
Products (1)
libupnp_project/libupnp
1.3.1
Published
Jan 31, 2013
Tracked Since
Feb 18, 2026