CVE-2005-0837
https://notcve.org/view.php?id=CVE-2005-0837
IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot). • http://secunia.com/advisories/14644 http://securitytracker.com/id?1013475 http://www.securityfocus.com/archive/1/393705 http://www.securityfocus.com/bid/12849 https://exchange.xforce.ibmcloud.com/vulnerabilities/19760 •
CVE-2004-1561 – Icecast 2.0.1 (Win32) - Remote Code Execution
https://notcve.org/view.php?id=CVE-2004-1561
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers. • https://www.exploit-db.com/exploits/568 https://www.exploit-db.com/exploits/573 https://www.exploit-db.com/exploits/16763 https://github.com/ivanitlearning/CVE-2004-1561 https://github.com/thel1nus/CVE-2004-1561-Notes https://github.com/darrynb89/CVE-2004-1561 https://github.com/ratiros01/CVE-2004-1561 http://aluigi.altervista.org/adv/iceexec-adv.txt http://marc.info/?l=bugtraq&m=109640005127644&w=2 http://marc.info/?l=bugtraq&m=109674593230539&w=2 http:/ •
CVE-2004-0781
https://notcve.org/view.php?id=CVE-2004-0781
Cross-site scripting (XSS) vulnerability in list.cgi in the Icecast internal web server (icecast-server) 1.3.12 and earlier allows remote attackers to inject arbitrary web script via the UserAgent parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en list.cgi en el servidor web interno de Icecast (icecast-server) 1.3.12 y anteriores permite a atacantes remotos inyectar script web de su elección mediante el parámetro UserAgent. • http://www.debian.org/security/2004/dsa-541 http://www.securityfocus.com/bid/11021 https://exchange.xforce.ibmcloud.com/vulnerabilities/17086 •
CVE-2004-2027
https://notcve.org/view.php?id=CVE-2004-2027
Buffer overflow in Icecast 2.0.0 and earlier allows remote attackers to cause a denial of service (crash) via a long Basic Authorization header that triggers an out-of-bounds read. • http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0378.html http://secunia.com/advisories/11578 http://security.gentoo.org/glsa/glsa-200405-10.xml http://www.osvdb.org/6075 http://www.securityfocus.com/bid/10311 http://www.xiph.org/archives/icecast/7144.html https://exchange.xforce.ibmcloud.com/vulnerabilities/16103 •
CVE-2002-1982 – icecast server 1.3.12 - Directory Traversal Information Disclosure
https://notcve.org/view.php?id=CVE-2002-1982
Directory traversal vulnerability in the list_directory function in Icecast 1.3.12 allows remote attackers to determine if a directory exists via a .. (dot dot) in the GET request, which returns different error messages depending on whether the directory exists or not. • https://www.exploit-db.com/exploits/21602 http://www.iss.net/security_center/static/9530.php http://www.securityfocus.com/archive/82/281274 http://www.securityfocus.com/bid/5189 •