Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0177

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0177
Last Modified 10 Sep 2008 08:00:38
Published 22 Apr 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0177

Summary

Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from an MP3 client.

Vulnerable Systems

Application

  • Icecast 1.3.10

  • Icecast 1.3.11

  • Icecast 1.3.7

  • Icecast 1.3.8 Beta2


References

CERT-VN - VU#596387

CONFIRM - http://www.xiph.org/archives/icecast/2616.html

BUGTRAQ - 20020404 Full analysis of multiple remotely exploitable bugs in Icecast 1.3.11

BID - 4415

BUGTRAQ - 20020403 Icecast temp patch (OR: Patches? We DO need stinkin' patches!!@$!)

BUGTRAQ - 20020402 icecast 1.3.11 remote shell/root exploit - #temp


Last Updated: 27 May 2016 10:36:48