CVE-2020-28926

Related Files

Ubuntu Security Notice USN-4722-1

Posted Feb 4, 2021

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4722-1 - It was discovered that ReadyMedia allowed subscription requests with a delivery URL on a different network segment than the fully qualified event-subscription URL. An attacker could use this to hijack smart devices and cause denial of service attacks. It was discovered that ReadyMedia allowed remote code execution. A remote attacker could send a malicious UPnP HTTP request to the service using HTTP chunked encoding and cause a denial of service.

tags | advisory, remote, web, denial of service, code execution

systems | linux, ubuntu

advisories | CVE-2020-12695, CVE-2020-28926

SHA-256 | 03d575da1c0b2b220f45e07d15a6203a0a90208c813d66c4c2d55abf176f9e73

Download | Favorite | View

Debian Security Advisory 4806-1

Posted Dec 28, 2020

Authored by Debian | Site debian.org

Debian Linux Security Advisory 4806-1 - It was discovered that missing input validation in minidlna, a lightweight DLNA/UPnP-AV server could result in the execution of arbitrary code. In addition minidlna was susceptible to the "CallStranger" UPnP vulnerability.

tags | advisory, arbitrary

systems | linux, debian

advisories | CVE-2020-12695, CVE-2020-28926

SHA-256 | b7b80b0f3734909dfe21dcae6fd31eabfe56df3eb643835d5ebe4c724d7a784f

Download | Favorite | View