Test ID:	1.3.6.1.4.1.25623.1.0.15401
Category:	Buffer overflow
Title:	ICECast AVLlib remote buffer overflow
Summary:	The remote server runs a version of ICECast, an open source streaming audio;server, which is older than version 1.3.12.;;This version is affected by a remote buffer overflow because it does not properly check bounds of data send from;clients.;;As a result of this vulnerability, it is possible for a remote attacker to cause a stack overflow and then execute;arbitrary code with the privilege of the server.
Description:	Summary: The remote server runs a version of ICECast, an open source streaming audio server, which is older than version 1.3.12. This version is affected by a remote buffer overflow because it does not properly check bounds of data send from clients. As a result of this vulnerability, it is possible for a remote attacker to cause a stack overflow and then execute arbitrary code with the privilege of the server. Solution: Upgrade to version 1.3.12 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2002-0177 BugTraq ID: 4415 http://www.securityfocus.com/bid/4415 Bugtraq: 20020402 icecast 1.3.11 remote shell/root exploit - #temp (Google Search) http://marc.info/?l=bugtraq&m=101780890326179&w=2 Bugtraq: 20020403 Icecast temp patch (OR: Patches? We DO need stinkin' patches!!@$!) (Google Search) http://marc.info/?l=bugtraq&m=101786838300906&w=2 Bugtraq: 20020404 Full analysis of multiple remotely exploitable bugs in Icecast 1.3.11 (Google Search) http://marc.info/?l=bugtraq&m=101793704306035&w=2 CERT/CC vulnerability note: VU#596387 http://www.kb.cert.org/vuls/id/596387
Copyright	Copyright (C) 2004 David Maciejak

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.