Broadcom UPnP Stack 'SetConnectionType()' Function Format String Vulnerability

Broadcom UPnP is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input.



An attacker can exploit this issue to execute arbitrary code with root privileges. Failed exploit attempts will likely result in a denial-of-service condition.


 

Privacy Statement
Copyright 2010, SecurityFocus