Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4612

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-4612
Last Modified 28 Nov 2012 12:00:00
Published 19 Nov 2012 07:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4612

Summary

icecast before 2.3.3 allows remote attackers to inject control characters such as newlines into the error loc (error.log) via a crafted URL.

Vulnerable Systems

Application

  • Icecast

  • Icecast 1.0.0

  • Icecast 1.3.0

  • Icecast 1.3.10

  • Icecast 1.3.10.1

  • Icecast 1.3.11

  • Icecast 1.3.12

  • Icecast 1.3.5

  • Icecast 1.3.5.1

  • Icecast 1.3.7

  • Icecast 1.3.7.1

  • Icecast 1.3.8

  • Icecast 1.3.8 Beta2

  • Icecast 1.3.9

  • Icecast 1.3.9.1

  • Icecast 1.3.9.2

  • Icecast 1.310

  • Icecast 2.0

  • Icecast 2.0.0

  • Icecast 2.0.1

  • Icecast 2.0.2

  • Icecast 2.1.0

  • Icecast 2.2

  • Icecast 2.3.0

  • Icecast 2.3.1

  • Icecast 2.3.2


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=768176

CONFIRM - http://www.icecast.org/

FEDORA - FEDORA-2012-16147

FEDORA - FEDORA-2012-16130


Last Updated: 27 May 2016 10:58:28