A stack-based buffer overflow in the upnpd binary running on NETGEAR WNDR3400v3 routers with firmware version 1.0.1.18_1.0.63 allows an attacker to remotely execute arbitrary code via a crafted UPnP SSDP packet.
References
Link | Resource |
---|---|
https://github.com/reevesrs24/CVE/blob/master/Netgear_WNDR2400v3/upnp_stack_overflow/upnp_stack_overflow.md | Exploit Third Party Advisory |
https://github.com/reevesrs24/CVE/blob/master/Netgear_WNDR2400v3/upnp_stack_overflow/upnp_stack_overflow.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:26
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/reevesrs24/CVE/blob/master/Netgear_WNDR2400v3/upnp_stack_overflow/upnp_stack_overflow.md - Exploit, Third Party Advisory |
Information
Published : 2019-07-28 18:15
Updated : 2024-11-21 04:26
NVD link : CVE-2019-14363
Mitre link : CVE-2019-14363
CVE.ORG link : CVE-2019-14363
JSON object : View
Products Affected
netgear
- wndr3400v3
- wndr3400v3_firmware
CWE
CWE-787
Out-of-bounds Write