National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:miniupnp_project:miniupnpc:1.9:2014-02-05
There are 1 matching records.
Vuln ID Summary CVSS Severity
CVE-2015-6031

Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the MiniUPnP client (aka MiniUPnPc) before 1.9.20150917 allows remote UPNP servers to cause a denial of service (application crash) and possibly execute arbitrary code via an "oversized" XML element name.

Published: November 02, 2015; 02:59:14 PM -05:00
    V2: 6.8 MEDIUM