CVE-2023-33476
published 2023-06-02CVE-2023-33476: ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when…
PriorityP357critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.06%
79.0th percentile
ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when handling HTTP requests using chunked transport encoding. This results in other code later using attacker-controlled chunk values that exceed the length of the allocated buffer, resulting in out-of-bounds read/write.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | minidlna | < minidlna 1.3.0+dfsg-2.2+deb12u1 (bookworm) | minidlna 1.3.0+dfsg-2.2+deb12u1 (bookworm) |
| readymedia_project | readymedia | 1.1.15 – 1.3.2 | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_ubuntu7.4HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
minidlna vulnerabilities
osv·2023-09-27·CVSS 7.4
CVE-2022-26505 [HIGH] minidlna vulnerabilities
minidlna vulnerabilities
It was discovered that ReadyMedia was vulnerable to DNS rebinding attacks.
A remote attacker could possibly use this issue to trick the local DLNA
server to leak information. This issue only affected Ubuntu 16.04 LTS,
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-26505)
It was discovered that ReadyMedia incorrectly handled certain HTTP requests
using chunked transport encoding. A remote attacker could possibly use this
issue to cause buffer overflows, resulting in out-of-bounds reads and writes.
(CVE-2023-33476)
GHSA
GHSA-xch8-fp3g-32mq: ReadyMedia (MiniDLNA) versions from 1
ghsa_unreviewed·2023-06-02
CVE-2023-33476 [CRITICAL] CWE-787 GHSA-xch8-fp3g-32mq: ReadyMedia (MiniDLNA) versions from 1
ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when handling HTTP requests using chunked transport encoding. This results in other code later using attacker-controlled chunk values that exceed the length of the allocated buffer, resulting in out-of-bounds read/write.
OSV
CVE-2023-33476: ReadyMedia (MiniDLNA) versions from 1
osv·2023-06-02·CVSS 9.8
CVE-2023-33476 [CRITICAL] CVE-2023-33476: ReadyMedia (MiniDLNA) versions from 1
ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when handling HTTP requests using chunked transport encoding. This results in other code later using attacker-controlled chunk values that exceed the length of the allocated buffer, resulting in out-of-bounds read/write.
Ubuntu
ReadyMedia vulnerabilities
vendor_ubuntu·2023-09-27·CVSS 7.4
CVE-2022-26505 [HIGH] ReadyMedia vulnerabilities
Title: ReadyMedia vulnerabilities
Summary: Several security issues were fixed in ReadyMedia.
It was discovered that ReadyMedia was vulnerable to DNS rebinding attacks.
A remote attacker could possibly use this issue to trick the local DLNA
server to leak information. This issue only affected Ubuntu 16.04 LTS,
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-26505)
It was discovered that ReadyMedia incorrectly handled certain HTTP requests
using chunked transport encoding. A remote attacker could possibly use this
issue to cause buffer overflows, resulting in out-of-bounds reads and writes.
(CVE-2023-33476)
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2023-33476: minidlna - ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer O...
vendor_debian·2023·CVSS 9.8
CVE-2023-33476 [CRITICAL] CVE-2023-33476: minidlna - ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer O...
ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when handling HTTP requests using chunked transport encoding. This results in other code later using attacker-controlled chunk values that exceed the length of the allocated buffer, resulting in out-of-bounds read/write.
Scope: local
bookworm: resolved (fixed in 1.3.0+dfsg-2.2+deb12u1)
bullseye: resolved (fixed in 1.3.0+dfsg-2+deb11u2)
forky: resolved (fixed in 1.3.2+dfsg-1.1)
sid: resolved (fixed in 1.3.2+dfsg-1.1)
trixie: resolved (fixed in 1.3.2+dfsg-1.1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://blog.coffinsec.com/0day/2023/05/31/minidlna-heap-overflow-rca.htmlhttps://lists.debian.org/debian-lts-announce/2023/06/msg00027.htmlhttps://security.gentoo.org/glsa/202311-12https://sourceforge.net/p/minidlna/git/ci/9bd58553fae5aef3e6dd22f51642d2c851225aec/https://sourceforge.net/projects/minidlna/https://www.debian.org/security/2023/dsa-5434https://blog.coffinsec.com/0day/2023/05/31/minidlna-heap-overflow-rca.htmlhttps://lists.debian.org/debian-lts-announce/2023/06/msg00027.htmlhttps://security.gentoo.org/glsa/202311-12https://sourceforge.net/p/minidlna/git/ci/9bd58553fae5aef3e6dd22f51642d2c851225aec/https://sourceforge.net/projects/minidlna/https://www.debian.org/security/2023/dsa-5434
2023-06-02
Published