diff --git a/mongoose.c b/mongoose.c
index 174c7bcbed017b8a4dd57d4cfb32927e7b766711..470e9a4db1009bdc35241ea668b2af7c88838e3d 100644
--- a/mongoose.c
+++ b/mongoose.c
@@ -4291,6 +4291,8 @@ static int parse_port_string(const struct vec *vec, struct socket *so) {
   } else if (sscanf(vec->ptr, "%d%n", &port, &len) != 1 ||
              len <= 0 ||
              len > (int) vec->len ||
+             port < 1 ||
+             port > 65535 ||
              (vec->ptr[len] && vec->ptr[len] != 's' &&
               vec->ptr[len] != 'r' && vec->ptr[len] != ',')) {
     return 0;