CVE-2016-8863

CRITICAL

Portable UPnP SDK <1.6.21 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-8863. PoCs published by mephi42.

AI-analyzed exploit summary This repository provides a Dockerfile to set up an environment for analyzing CVE-2016-8863, an out-of-bound access vulnerability in pupnp's create_url_list() function. It includes details about the affected version and the fix commit.

Description

Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in the CALLBACK header of an SUBSCRIBE request.

Exploits (1)

nomisec WRITEUP 1 stars
by mephi42 · poc
https://github.com/mephi42/CVE-2016-8863

This repository provides a Dockerfile to set up an environment for analyzing CVE-2016-8863, an out-of-bound access vulnerability in pupnp's create_url_list() function. It includes details about the affected version and the fix commit.

Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target: pupnp release-1.6.18
No auth needed
Prerequisites: Docker environment · i386 Ubuntu 16.04 image
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (6)

Core 6
Core References
Issue Tracking, Third Party Advisory x_refsource_confirm
https://sourceforge.net/p/pupnp/bugs/133/
Release Notes, Third Party Advisory x_refsource_confirm
https://sourceforge.net/p/pupnp/code/ci/master/tree/ChangeLog
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201701-52
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2016/dsa-3736
Third Party Advisory x_refsource_misc
https://www.tenable.com/security/research/tra-2017-10
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/92849

Scores

CVSS v3 9.8
EPSS 0.1608
EPSS Percentile 95.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (2)
debian/debian_linux 8.0
libupnp_project/libupnp < 1.6.20
Published Mar 07, 2017
Tracked Since Feb 18, 2026