CVE-2011-4504

The UPnP IGD implementation in the Pseudo ICS UPnP software on the ZyXEL P-330W allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:genmei_mori:pseudoics:0.1:*:*:*:*:*:*:*
cpe:2.3:a:genmei_mori:pseudoics:0.2:*:*:*:*:*:*:*
cpe:2.3:a:genmei_mori:pseudoics:0.3:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:p-330w_router:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:32

Type Values Removed Values Added
References () http://www.kb.cert.org/vuls/id/357851 - US Government Resource () http://www.kb.cert.org/vuls/id/357851 - US Government Resource
References () http://www.upnp-hacks.org/suspect.html - () http://www.upnp-hacks.org/suspect.html -

Information

Published : 2011-11-22 11:55

Updated : 2024-11-21 01:32


NVD link : CVE-2011-4504

Mitre link : CVE-2011-4504

CVE.ORG link : CVE-2011-4504


JSON object : View

Products Affected

genmei_mori

  • pseudoics

zyxel

  • p-330w_router
CWE
CWE-16

Configuration