Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0838

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-0838
Last Modified 05 Sep 2008 04:47:28
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0838

Summary

Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.

Vulnerable Systems

Application

  • Icecast 2.20


References

XF - icecast-xsl-gain-pivileges(19753)

BID - 12849

BUGTRAQ - 20050318 IceCast up to v2.20 multiple vulnerabilities

SECTRACK - 1013475


Last Updated: 27 May 2016 10:39:57