Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
icecast icecast vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2018-18820
A buffer overflow exists in the URL-authentication backend of the Icecast prior to 2.4.4. If the backend is enabled, then any malicious HTTP client can send a request for that specific resource including a crafted header, leading to denial of service and potentially remote code e...
Xiph Icecast
Debian Debian Linux 9.0
Debian Debian Linux 8.0
5.3
CVSSv3
CVE-2022-41952
Synapse prior to 1.52.0 with URL preview functionality enabled will attempt to generate URL previews for media stream URLs without properly limiting connection time. Connections will only be terminated after `max_spider_size` (default: 10M) bytes have been downloaded, which can i...
Matrix Synapse
NA
CVE-2015-3026
Icecast prior to 2.4.2, when a stream_auth handler is defined for URL authentication, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a request without login credentials, as demonstrated by a request to "admin/killsource?mo...
Xiph Icecast
Debian Debian Linux 8.0
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
NA
CVE-2014-9091
Icecast prior to 2.4.0 does not change the supplementary group privileges when <changeowner> is configured, which allows local users to gain privileges via unspecified vectors.
Icecast Icecast
NA
CVE-2014-9018
Icecast prior to 2.4.1 transmits the output of the on-connect script, which might allow remote malicious users to obtain sensitive information, related to shared file descriptors.
Icecast Icecast
NA
CVE-2011-4612
icecast prior to 2.3.3 allows remote malicious users to inject control characters such as newlines into the error loc (error.log) via a crafted URL.
Xiph Icecast
NA
CVE-2007-1344
Multiple buffer overflows in src/ezstream.c in Ezstream prior to 0.3.0 allow remote malicious users to execute arbitrary code via a crafted XML configuration file processed by the (1) urlParse function, which causes a stack-based overflow and the (2) ReplaceString function, which...
Xiph Icecast Ezstream
NA
CVE-2005-0837
IceCast 2.20 allows remote malicious users to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).
Icecast Icecast 2.0.2
Icecast Icecast 2.1.0
Icecast Icecast 2.0
Icecast Icecast 2.0.1
Icecast Icecast 2.2
NA
CVE-2005-0838
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow malicious users to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value...
Icecast Icecast 2.20
1 EDB exploit
NA
CVE-2004-1561
Buffer overflow in Icecast 2.0.1 and previous versions allows remote malicious users to execute arbitrary code via an HTTP request with a large number of headers.
Icecast Icecast 2.0
Icecast Icecast 2.0.1
3 EDB exploits
10 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »