Feedly:TrendLabs Security Intelligence Blog. High-Profile Mobile Apps At Risk Due to Three-Year-Old Vulnerability

from TrendLabs Security Intelligence Blog

A total of 6.1 million devices – smart phones, routers, smart TVs – are currently at risk to remote code execution attacks due to vulnerabilities that have been fixed since 2012. The vulnerability exists in the Portable SDK for UPnP™ Devices, also called libupnp. This particular library is used to implement media playback (DLNA) or NAT traversal (UPnP IGD). Apps on a smartphone can use these features to play media files or connect to other devices within a user's home network.