Print

IPitomy Communications
Response to CERT VU#922681
1/31/2013


Summary


The Software Developer Kit (SDK) for Universal Plug-n-Play (UPnP) Devices contains a library originally developed as the Intel SDK for UPnP Devices.  Multiple stack-based buffer overflow vulnerabilities have been found in the popular versions of this library used on many network vendor devices.  For more information on this vulnerability please visit:  http://www.kb.cert.org/vuls/id/922681



Affected Products


IPitomy has not confirmed the vulnerability yet and is still investigating.  However we are listing below the only products that could be affected as well as the recommended steps to prevent any potential exploitation of these vulnerabilities.

IP1000 and IP1000v2

IPR20