Threat Level: green Handler on Duty: Russ McRee

SANS ISC: Port 52869 (tcp/udp) Attack Activity - SANS Internet Storm Center Port 52869 (tcp/udp) Attack Activity


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Loading...
Port Information
Protocol Service Name
tcp UPNP UPNP over SOAP
[get complete service list]
Port diary mentions
URL
When Cameras and Routers attack Phones. Spike in CVE-2014-8361 Exploits Against Port 52869
User Comments
Submitted By Date
Comment
Dr. J. 2018-08-01 15:20:39
Some devices receive UPNP requests on this port via SOAP. A common implementation is the "miniigd" server by Realtek. It has had some vulnerabilities in the past, including remote code execution issues.
Add a comment
CVE Links
CVE # Description
CVE-2014-8361 The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request.