cbcvebase.
CVE-2012-5962
published 2013-01-31

CVE-2012-5962: Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp…

PriorityP272critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
36.93%
98.3th percentile
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.3.1 allows remote attackers to execute arbitrary code via a long DeviceType (aka urn) field in a UDP packet.

Affected

1 ranges
VendorProductVersion rangeFixed in
portable_sdk_for_upnp_projectportable_sdk_for_upnp

Detection & IOCsextracted from sources · hover to see the quote

  • Exploit vector is a UDP packet targeting the SSDP parser; detect anomalously long DeviceType (urn) fields in SSDP UDP traffic
  • Vulnerable function is unique_service_name() in ssdp/ssdp_server.c within libupnp 1.3.1; focus code/binary analysis and runtime monitoring on this function for stack-based buffer overflow conditions
  • Attack surface is malicious SSDP requests over the network; monitor for oversized or malformed SSDP messages, particularly those with excessively long urn/DeviceType fields
  • ·GUPnP is NOT affected — it is an independent UPnP implementation entirely separate from libupnp; do not conflate the two in detection or patching scope
  • ·libupnp is not shipped in any Red Hat Enterprise Linux version, so RHEL-based systems are not exposed via the OS vendor package
  • ·Exposure extends beyond OS packages — libupnp is embedded in network devices and media/file-sharing applications from multiple vendors; inventory all third-party products for bundled libupnp usage

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat10.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.