Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.15401
Kategorie:Buffer overflow
Titel:ICECast AVLlib remote buffer overflow
Zusammenfassung:The remote server runs a version of ICECast, an open source streaming audio;server, which is older than version 1.3.12.;;This version is affected by a remote buffer overflow because it does not properly check bounds of data send from;clients.;;As a result of this vulnerability, it is possible for a remote attacker to cause a stack overflow and then execute;arbitrary code with the privilege of the server.
Beschreibung:Summary:
The remote server runs a version of ICECast, an open source streaming audio
server, which is older than version 1.3.12.

This version is affected by a remote buffer overflow because it does not properly check bounds of data send from
clients.

As a result of this vulnerability, it is possible for a remote attacker to cause a stack overflow and then execute
arbitrary code with the privilege of the server.

Solution:
Upgrade to version 1.3.12 or later.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: BugTraq ID: 4415
Common Vulnerability Exposure (CVE) ID: CVE-2002-0177
http://www.securityfocus.com/bid/4415
Bugtraq: 20020402 icecast 1.3.11 remote shell/root exploit - #temp (Google Search)
http://marc.info/?l=bugtraq&m=101780890326179&w=2
Bugtraq: 20020403 Icecast temp patch (OR: Patches? We DO need stinkin' patches!!@$!) (Google Search)
http://marc.info/?l=bugtraq&m=101786838300906&w=2
Bugtraq: 20020404 Full analysis of multiple remotely exploitable bugs in Icecast 1.3.11 (Google Search)
http://marc.info/?l=bugtraq&m=101793704306035&w=2
CERT/CC vulnerability note: VU#596387
http://www.kb.cert.org/vuls/id/596387
CopyrightThis script is Copyright (C) 2004 David Maciejak

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.