A stack-based buffer overflow in the upnpd binary running on NETGEAR WNDR3400v3 routers with firmware version 1.0.1.18_1.0.63 allows an attacker to remotely execute arbitrary code via a crafted UPnP SSDP packet.
References
Link | Resource |
---|---|
https://github.com/reevesrs24/CVE/blob/master/Netgear_WNDR2400v3/upnp_stack_overflow/upnp_stack_overflow.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2019-07-28 18:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-14363
Mitre link : CVE-2019-14363
CVE.ORG link : CVE-2019-14363
JSON object : View
Products Affected
netgear
- wndr3400v3
- wndr3400v3_firmware
CWE
CWE-787
Out-of-bounds Write