Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.15398
Category:Buffer overflow
Title:ICECast libshout remote buffer overflow
Summary:The remote server runs a version of ICECast, an open source streaming audio;server, which is older than version 1.3.9.;;Icecast and the libshout library are affected by a remote buffer overflow because they do not properly check;bounds of data send from clients.;;As a result of this vulnerability, it is possible for a remote attacker to cause a stack overflow and then execute;arbitrary code with the privilege of the server.
Description:Summary:
The remote server runs a version of ICECast, an open source streaming audio
server, which is older than version 1.3.9.

Icecast and the libshout library are affected by a remote buffer overflow because they do not properly check
bounds of data send from clients.

As a result of this vulnerability, it is possible for a remote attacker to cause a stack overflow and then execute
arbitrary code with the privilege of the server.

Solution:
Upgrade to version 1.3.9 or later.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: BugTraq ID: 4735
Common Vulnerability Exposure (CVE) ID: CVE-2001-1229
Bugtraq: 20010312 Icecast / Libshout remote vulnerabilities (Google Search)
http://marc.info/?l=bugtraq&m=98438880622976&w=2
Conectiva Linux advisory: CLA-2001:387
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000387
http://www.redhat.com/support/errata/RHSA-2002-063.html
CopyrightThis script is Copyright (C) 2004 David Maciejak

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.