Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2001 SecuriTeamOPENVAS:136141256231010717
HistoryNov 03, 2005 - 12:00 a.m.

SHOUTcast Server DoS detector vulnerability

2005-11-0300:00:00
Copyright (C) 2001 SecuriTeam
plugins.openvas.org
7

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

64.9%

JSON

This detects SHOUTcast Server

# SPDX-FileCopyrightText: 2001 SecuriTeam
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only


if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.10717");
  script_version("2023-08-01T13:29:10+0000");
  script_tag(name:"last_modification", value:"2023-08-01 13:29:10 +0000 (Tue, 01 Aug 2023)");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  script_cve_id("CVE-2001-1304");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");

  script_name("SHOUTcast Server DoS detector vulnerability");
  script_category(ACT_GATHER_INFO);
  script_tag(name:"qod_type", value:"remote_active");

  script_copyright("Copyright (C) 2001 SecuriTeam");
  script_family("Web Servers");
  script_dependencies("find_service.nasl", "httpver.nasl", "global_settings.nasl");
  script_require_ports("Services/www", 8000);
  script_exclude_keys("Settings/disable_cgi_scanning");

  script_xref(name:"URL", value:"http://www.securiteam.com/exploits/5YP031555Q.html");

  script_tag(name:"summary", value:"This detects SHOUTcast Server's version. If the version equals
  1.8.2 it is vulnerable to a denial of service attack.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"solution", value:"Upgrade to the latest version of SHOUTcast Server.");

  exit(0);
}

include("http_func.inc");
include("http_keepalive.inc");
include("port_service_func.inc");

port = http_get_port( default:8000 );

req = 'GET /content/nonexistant' + rand() + rand() + rand() + '.mp3 HTTP/1.0\r\n\r\n' +
      'Host: ' + get_host_name() + '\r\n\r\n';
banner = http_keepalive_send_recv(port:port, data:req);
if(!banner)exit(0);

if ("SHOUTcast Distributed Network Audio Server" >< banner) {
  resultrecv = banner;
  resultrecv = strstr(resultrecv, "SHOUTcast Distributed Network Audio Server/");
  resultsub = strstr(resultrecv, string("<BR>"));
  resultrecv = resultrecv - resultsub;
  resultrecv = resultrecv - "SHOUTcast Distributed Network Audio Server/";
  resultrecv = resultrecv - "<BR>";
  report = string("The remote SHOUTcast server version is :\n");
  report = report + resultrecv;
  if ("1.8.2" >< resultrecv) {
    report = report + string("\n\nThis version of SHOUTcast is supposedly vulnerable to a denial of service attack. Upgrade your SHOUTcast server.\n");
    security_message(port:port, data:report);
  } else {
    log_message(port:port, data:report);
  }
}

Related

nessus 1
openvas 1
cve 1
nessus
nessus
SHOUTcast Server User-Agent / Host Header DoS
2001-08-13 00:00:00
openvas
openvas
SHOUTcast Server DoS detector vulnerability
2005-11-03 00:00:00
cve
cve
CVE-2001-1304
2001-08-03 04:00:00

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

64.9%

JSON
Related for OPENVAS:136141256231010717
nessus1openvas1cve1