CVE-2018-16596
Last modified
CVE-2018-16596 is a vulnerability of currently unknown severity. A stack-based buffer overflow in the LAN UPnP service running on UDP port 1900 of Swisscom Internet-Box (2, Standard, and Plus) prior to v09.04.00 and Internet-Box light prior to v08.05.02 allows remote code execution. No authentication is required to exploit this vulnerability. EPSS estimates a 0.70% chance of exploitation in the next 30 days.
Description
A stack-based buffer overflow in the LAN UPnP service running on UDP port 1900 of Swisscom Internet-Box (2, Standard, and Plus) prior to v09.04.00 and Internet-Box light prior to v08.05.02 allows remote code execution. No authentication is required to exploit this vulnerability. Sending a simple UDP packet to port 1900 allows an attacker to execute code on a remote device. However, this is only possible if the attacker is inside the LAN. Because of ASLR, the success rate is not 100% and leads instead to a DoS of the UPnP service. The remaining functionality of the Internet Box is not affected. A reboot of the Internet Box is necessary to attempt the exploit again.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Swisscom | Internet-Box Standard Firmware | < 09.04.00 |
| Swisscom | Internet-Box Light Firmware | < 08.05.02 |
| Swisscom | Internet-Box Plus Firmware | < 09.04.00 |
| Swisscom | Internet-Box 2 Firmware | <= 09.04.00 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-16596?
How severe is CVE-2018-16596?
How do I fix CVE-2018-16596?
Are you affected by CVE-2018-16596?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST