Trend Micro has discovered a security vulnerability in a software component used by more than 6.1 million smart devices. The flaw has been known since 2012 but has not been patched yet. The biggest app affected by the flaw is QQMusic, which is used by over 100 Million people in China alone and has been downloaded by millions of Android users from the Google Play store. The flaws occur due to a buffer overflow in Simple Service Discovery Protocol (SSDP), potentially allowing hackers to take full control over the targeted device running the vulnerable version of the software development kit.
Source: https://thehackernews.com/2015/12/iot-mobile-security.html