Firmware 5.4.7: Linux/3.5.7-gentoo UPnP/1.0 MiniUPnPd/1.2 according to CVE-2013-0230


#1

http://netalyzr.icsi.berkeley.edu/ detected a possibly vulnerable UPnP device in your network:

We received UPnP responses from one device:
192.168.254.254: this device provided a valid device description via its UPnP URL. This description, viewable here, contains the following information about this gateway:
Name: Balance_2089
Manufacturer: Peplink
Manufacturer URL: http://www.peplink.com
Model name: Peplink Balance 310
Model number: BPL-310
Model URL: http://www.peplink.com
Model Description: Peplink Balance 310
This device appears to run “Linux/3.5.7-gentoo UPnP/1.0 MiniUPnPd/1.2”. This system may be vulnerable to CVE-2013-0230

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0230


#2

Ummm… let us look in to this.