CVE-2018-16596

Name of the Vulnerable Software and Affected Versions Swisscom Internet-Box (2, Standard, and Plus) versions prior to v09.04.00 Swisscom Internet-Box light versions prior to v08.05.02

Description A stack-based buffer overflow in the LAN UPnP service allows remote code execution. No authentication is required to exploit this issue. An attacker can send a UDP packet to port 1900 to execute code on a remote device, but this is only possible if the attacker is inside the LAN. The success rate is not 100% due to ASLR, and instead, it leads to a Denial of Service (DoS) of the UPnP service. The remaining functionality of the Internet Box is not affected.

Recommendations For Swisscom Internet-Box (2, Standard, and Plus) versions prior to v09.04.00, update to version v09.04.00 or later to resolve the issue. For Swisscom Internet-Box light versions prior to v08.05.02, update to version v08.05.02 or later to resolve the issue. As a temporary workaround, consider restricting access to UDP port 1900 to minimize the risk of exploitation.