This script is Copyright (C) 2002-2016 Tenable Network Security, Inc.
The Universal Plug and Play service on the remote host is prone to
denial of service and buffer overflow attacks.
Using a specially crafted NOTIFY directive, a remote attacker can
cause code to run in the context of the Universal Plug and Play (UPnP)
subsystem or possibly launch a denial of service attack against the
Note that, under Windows XP, the UPnP subsystem operates with SYSTEM
Microsoft has released a set of patches for Windows 98, 98SE, ME, and
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : false
Family: Windows : Microsoft Bulletins
Nessus Plugin ID: 10835 ()
Bugtraq ID: 3723
CVE ID: CVE-2001-0876CVE-2001-0877
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.