Buffer Overflow Vulnerability in Cisco CVR100W Wireless-N VPN Router
CVE-2017-3882

9.6CRITICAL

Key Information:

Vendor
Cisco
Status
Cisco Cvr100w Wireless-n Vpn Router
Vendor
CVE Published:
16 May 2017

Summary

A vulnerability exists in the Universal Plug-and-Play (UPnP) implementation of Cisco's CVR100W Wireless-N VPN Router that enables an attacker, adjacent to the local network, to exploit this weakness. By sending specially crafted requests to the router's UPnP listening port, an attacker may trigger a buffer overflow, which can lead to unauthorized execution of arbitrary code or a denial of service condition. The security flaw is attributed to inadequate range checks for input data within the UPnP protocol. This vulnerability is applicable to all firmware releases of the Cisco CVR100W prior to 1.0.1.22, thereby exposing impacted devices to significant risks.

Affected Version(s)

Cisco CVR100W Wireless-N VPN Router Cisco CVR100W Wireless-N VPN Router

References

http://www.securitytracker.com/id/1038391
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/98287
vdb-entryx_refsource_BID
https://tools.cisco.com/security/center/content/CiscoSecu...
x_refsource_CONFIRM

CVSS V3.1

Score:
9.6
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.