SSDP Responder 1.x through 1.5 mishandles incoming network messages, leading to a stack-based buffer overflow by 1 byte. This results in a crash of the server, but only when strict stack checking is enabled. This is caused by an off-by-one error in ssdp_recv in ssdpd.c.
References
Link | Resource |
---|---|
https://github.com/troglobit/ssdp-responder/commit/ce04b1f29a137198182f60bbb628d5ceb8171765 | Patch Third Party Advisory |
https://github.com/troglobit/ssdp-responder/issues/1 | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-07-28T12:43:39
Updated: 2019-07-28T12:43:39
Reserved: 2019-07-28T00:00:00
Link: CVE-2019-14323
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-07-28T13:15:10.783
Modified: 2020-12-16T18:55:56.947
Link: CVE-2019-14323
JSON object: View
Redhat Information
No data.