FreeBSD : miniupnpc -- buffer overflow (06fefd2f-728f-11e5-a371-14dae9d210b8)
Medium Nessus Plugin ID 86385
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionTalos reports :
An exploitable buffer overflow vulnerability exists in the XML parser functionality of the MiniUPnP library. A specially crafted XML response can lead to a buffer overflow on the stack resulting in remote code execution. An attacker can set up a server on the local network to trigger this vulnerability.
SolutionUpdate the affected packages.