Nanard

**Name of the Vulnerable Software and Affected Versions** MiniUPnP version 1.9 **Description** The issue allows remote attackers to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read in the `getHTTPResponse` function. **Recommendations** For MiniUPnP version 1.9, as a temporary workaround, consider disabling the `getHTTPResponse` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.