CVE-2016-6255
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-6255
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-6255.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-6255
- Downstream
- Related
- Published
- 2017-03-07T16:59:00.743Z
- Modified
- 2025-11-20T20:33:33.364316Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler.
- References
-
- https://www.exploit-db.com/exploits/40589/
- https://www.tenable.com/security/research/tra-2017-10
- http://www.debian.org/security/2016/dsa-3736
- http://www.openwall.com/lists/oss-security/2016/07/18/13
- http://www.openwall.com/lists/oss-security/2016/07/20/5
- http://www.securityfocus.com/bid/92050
- https://github.com/mjg59/pupnp-code/commit/be0a01bdb83395d9f3a5ea09c1308a4f1a972cbd
- https://security.gentoo.org/glsa/201701-52
- https://sourceforge.net/p/pupnp/code/ci/master/tree/ChangeLog
- https://twitter.com/mjg59/status/755062278513319936
Affected packages
Git / github.com/mjg59/pupnp-code
Affected ranges
- Type
- GIT
- Repo
- https://github.com/mjg59/pupnp-code
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"deprecated": false,
"target": {
"file": "upnp/src/genlib/net/http/webserver.c",
"function": "http_RecvPostMessage"
},
"signature_version": "v1",
"source": "https://github.com/mjg59/pupnp-code/commit/be0a01bdb83395d9f3a5ea09c1308a4f1a972cbd",
"digest": {
"length": 2541.0,
"function_hash": "212251749395148867721629458307923964863"
},
"id": "CVE-2016-6255-7740797d"
},
{
"signature_type": "Line",
"deprecated": false,
"target": {
"file": "upnp/src/genlib/net/http/webserver.c"
},
"signature_version": "v1",
"source": "https://github.com/mjg59/pupnp-code/commit/be0a01bdb83395d9f3a5ea09c1308a4f1a972cbd",
"digest": {
"line_hashes": [
"84418285040388207588986487673792281868",
"66730018829465562609055539162208265760",
"28942761826591058533852300092857965294",
"228902641696458123845140305949883135080",
"137134906439484352414626189625222104624",
"116622230184875046664787740408048326301",
"249006178772565463612952829024447696485"
],
"threshold": 0.9
},
"id": "CVE-2016-6255-a6ab9dd3"
}
]