Lucene search

[email protected]CVE-2011-4612

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-4612

2022-10-0316:15:14

CWE-20

[email protected]

web.nvd.nist.gov

cve

icecast

remote attacks

url

security vulnerability

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

62.0%

JSON

icecast before 2.3.3 allows remote attackers to inject control characters such as newlines into the error loc (error.log) via a crafted URL.

Affected configurations

NVD

Node

xiphicecastRange≤2.3.2

CPENameOperatorVersion
xiph:icecastxiph icecastle2.3.2

CPE	Name	Operator	Version
xiph:icecast	xiph icecast	le	2.3.2

References

lists.fedoraproject.org/pipermail/package-announce/2012-October/090668.html

lists.fedoraproject.org/pipermail/package-announce/2012-October/090695.html

www.icecast.org/

bugzilla.redhat.com/show_bug.cgi?id=768176

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

62.0%

JSON

Related for CVE-2011-4612

fedora2 nessus5 prion1 openvas2 ubuntucve1 nvd1 debiancve1 cvelist1