CVE-2004-1561 - Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via a

CVE-2004-1561

Summary

Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers.

References

Vulnerable Configurations

cpe:2.3:a:icecast:icecast:2.0:*:*:*:*:*:*:*
cpe:2.3:a:icecast:icecast:2.0:*:*:*:*:*:*:*
cpe:2.3:a:icecast:icecast:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:icecast:icecast:2.0.1:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	11271
bugtraq	20040928 Code execution in Icecast 2.0.1 20041002 Re:2. Code execution in Icecast 2.0.1(exploit with shellcode)
misc	http://aluigi.altervista.org/adv/iceexec-adv.txt http://www.securiteam.com/exploits/6X00315BFM.html
osvdb	10446
sectrack	1011439
secunia	12666
xf	icecast-http-bo(17538)

Last major update

11-07-2017 - 01:31

Published

31-12-2004 - 05:00

Last modified

11-07-2017 - 01:31