CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 1CVE-2002-1470
https://notcve.org/view.php?id=CVE-2002-1470
SHOUTcast 1.8.9 and earlier allows local users to obtain the cleartext administrative password via a GET request to port 8001, which causes the password to be logged in the world-readable sc_serv.log file. SHOUTcast 1.8.9 y anteriores permite a usuarios locales obtenter la contraseña administrativa en texto claro mediante una petición GET al puerto 9001, lo que hace que la contraseña sea registrada en el fichero sc_serv.log, con permisos de lectura para todo el mundo. • http://archives.neohapsis.com/archives/bugtraq/2002-08/0017.html http://www.iss.net/security_center/static/9775.php http://www.securityfocus.com/bid/5414 •
CVSS: 7.5EPSS: 1%CPEs: 5EXPL: 2CVE-2002-0907 – Nullsoft SHOUTcast 1.8.9 - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-0907
Buffer overflow in SHOUTcast 1.8.9 and other versions before 1.8.12 allows a remote authenticated DJ to execute arbitrary code on the server via a long value in a header whose name begins with "icy-". Desbordamiento de búfer en SHOUTcast 1.8.9 y otras versiones anteriores a 1.8.12 permite a un DJ autenticado remotamente ejecutar código arbitrario en el servidor mediante un un valor largo en una cabecera cuyo nombre empieza con "icy-" • https://www.exploit-db.com/exploits/21511 http://archives.neohapsis.com/archives/bugtraq/2002-06/0016.html http://www.iss.net/security_center/static/9251.php http://www.securityfocus.com/bid/4934 •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 0CVE-2002-0199
https://notcve.org/view.php?id=CVE-2002-0199
Buffer overflow in admin.cgi for Nullsoft Shoutcast Server 1.8.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an argument with a large number of backslashes. Desbordamiento de buffer en admin.cgi de Nullsoft Shoutcast Server 1.8.3 permite a atacantes remotos causar un denegación de servicio y posiblemente ejecutar código arbitrario con un grán numero de barras invertidas (\\). • http://marc.info/?l=bugtraq&m=101167484012724&w=2 http://www.securityfocus.com/bid/3934 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1304
https://notcve.org/view.php?id=CVE-2001-1304
Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header. • http://archives.neohapsis.com/archives/bugtraq/2001-08/0048.html http://www.iss.net/security_center/static/6938.php •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1561
https://notcve.org/view.php?id=CVE-1999-1561
Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server. • http://www.securityfocus.com/archive/1/24852 •