Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
icecast icecast vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2001-1083
Icecast 1.3.7, and other versions prior to 1.3.11 with HTTP server file streaming support enabled allows remote malicious users to cause a denial of service (crash) via a URL that ends in . (dot), / (forward slash), or \ (backward slash).
Icecast Icecast 1.3.8 Beta2
Icecast Icecast 1.3.7
Icecast Icecast 1.0.0
1 EDB exploit
445
VMScore
CVE-2015-3026
Icecast prior to 2.4.2, when a stream_auth handler is defined for URL authentication, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a request without login credentials, as demonstrated by a request to "admin/killsource?mo...
Xiph Icecast
Debian Debian Linux 8.0
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
445
VMScore
CVE-2014-9018
Icecast prior to 2.4.1 transmits the output of the on-connect script, which might allow remote malicious users to obtain sensitive information, related to shared file descriptors.
Icecast Icecast
445
VMScore
CVE-2011-4612
icecast prior to 2.3.3 allows remote malicious users to inject control characters such as newlines into the error loc (error.log) via a crafted URL.
Xiph Icecast
445
VMScore
CVE-2005-0837
IceCast 2.20 allows remote malicious users to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).
Icecast Icecast 2.0.2
Icecast Icecast 2.1.0
Icecast Icecast 2.2
Icecast Icecast 2.0
Icecast Icecast 2.0.1
445
VMScore
CVE-2004-2027
Buffer overflow in Icecast 2.0.0 and previous versions allows remote malicious users to cause a denial of service (crash) via a long Basic Authorization header that triggers an out-of-bounds read.
Icecast Icecast 1.3.10
Icecast Icecast 1.3.11
Icecast Icecast 1.3.9.1
Icecast Icecast 1.3.9.2
Icecast Icecast 2.0.0
Icecast Icecast 1.3.5
Icecast Icecast 1.3.0
Icecast Icecast 1.3.7.1
Icecast Icecast 1.3.12
Icecast Icecast 1.3.9
Icecast Icecast 1.3.5.1
Icecast Icecast 1.3.7
Icecast Icecast 1.3.10.1
Icecast Icecast 1.3.8
409
VMScore
CVE-2014-9091
Icecast prior to 2.4.0 does not change the supplementary group privileges when <changeowner> is configured, which allows local users to gain privileges via unspecified vectors.
Icecast Icecast
383
VMScore
CVE-2004-0781
Cross-site scripting (XSS) vulnerability in list.cgi in the Icecast internal web server (icecast-server) 1.3.12 and previous versions allows remote malicious users to inject arbitrary web script via the UserAgent parameter.
Icecast Icecast 1.3.10
Icecast Icecast 1.3.11
Icecast Icecast 1.3.9.1
Icecast Icecast 1.3.9.2
Icecast Icecast 1.3.5
Icecast Icecast 1.3.0
Icecast Icecast 1.3.7.1
Icecast Icecast 1.3.12
Icecast Icecast 1.3.9
Icecast Icecast 1.3.5.1
Icecast Icecast 1.3.7
Icecast Icecast 1.3.10.1
Icecast Icecast 1.3.8
NA
CVE-2022-41952
Synapse prior to 1.52.0 with URL preview functionality enabled will attempt to generate URL previews for media stream URLs without properly limiting connection time. Connections will only be terminated after `max_spider_size` (default: 10M) bytes have been downloaded, which can i...
Matrix Synapse
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2