Lucene search
K

342 matches found

OSV
OSV
added 2022/11/22 12:0 a.m.46 views

CVE-2022-41952 Uncontrolled Resource Consumption in Matrix Synapse

Synapse before 1.52.0 with URL preview functionality enabled will attempt to generate URL previews for media stream URLs without properly limiting connection time. Connections will only be terminated after maxspidersize default: 10M bytes have been downloaded, which can in some cases lead to...

6.5CVSS5.9AI score0.00827EPSS
Exploits0References7
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.9 views

WordPress "Radio Player – Live Shoutcast, Icecast and Audio Stream Player for WordPress" plugin < 1.0.8 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress "Radio Player – Live Shoutcast, Icecast and Audio Stream Player for WordPress" plugin versions 1.0.8. Solution Update the WordPress "Radio Player – Live Shoutcast, Icecast and Audio Stream Player for WordPress" plugin to the...

2.4AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.19 views

WordPress "Radio Player – Live Shoutcast, Icecast and Audio Stream Player for WordPress" plugin < 1.0.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress "Radio Player – Live Shoutcast, Icecast and Audio Stream Player for WordPress" plugin versions 1.0.8. Solution Update the WordPress "Radio Player – Live Shoutcast, Icecast and Audio Stream Player for...

4AI score
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2018-0472)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.1AI score0.48944EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2014-0494)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.02965EPSS
Exploits1References6
Veracode
Veracode
added 2020/12/06 3:36 a.m.17 views

Denial Of Service (DoS)

Icecast is vulnerable to Denial of service DoS. An attacker is able to cause a denial of service via a request without login credentials...

5CVSS3.5AI score0.04344EPSS
Exploits1References14Affected Software1
Veracode
Veracode
added 2020/05/10 11:26 p.m.22 views

Denial Of Service (DoS)

icecast is vulnerable to denial of service DoS. A buffer overflow was discovered in the URL-authentication backend of the Icecast before 2.4.4. If the backend is enabled, then any malicious HTTP client can send a request for that specific resource including a crafted header, leading to denial of...

8.1CVSS2.9AI score0.48944EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.65 views

Fedora Update for icecast FEDORA-2018-b881073c43

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS8.1AI score0.48944EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/04/22 12:0 a.m.28 views

GLSA-201811-09 : Icecast: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201811-09 Icecast: Arbitrary code execution Multiple buffer overflows have been discovered in Icecast. Please review the CVE identifier referenced below for details. Impact : A remote attacker, by sending a specially crafted reque...

8.1CVSS8.4AI score0.48944EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.26 views

openSUSE Security Update : icecast (openSUSE-2019-360)

This update for icecast fixes the following security issues : - CVE-2018-18820: A buffer overflow in url-auth could have potentially allowed remote code execution boo1114434 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

8.1CVSS8.6AI score0.48944EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.16 views

Fedora 28 : icecast (2018-d4349a7ba3)

This release fixes buffer overflows in URL authentication code CVE-2018-18820, a crash in htpasswd authentication if no filename is set, a crash on xsltApplyStylesheet error, and a crash on malformed Opus streams. It also corrects global listener counter. It stops displaying hashed user passwords...

8.1CVSS7.8AI score0.48944EPSS
Exploits0References2
Mageia
Mageia
added 2018/11/28 8:50 p.m.30 views

Updated icecast packages fix security vulnerability

Buffer overflows in URL auth code if there is a "mount" definition that enables URL authentication. A malicious client could send long HTTP headers, leading to a buffer overflow and potential remote code execution CVE-2018-18820...

8.1CVSS4.8AI score0.48944EPSS
Exploits0References2
OSV
OSV
added 2018/11/28 8:50 p.m.9 views

MGASA-2018-0472 Updated icecast packages fix security vulnerability

Buffer overflows in URL auth code if there is a "mount" definition that enables URL authentication. A malicious client could send long HTTP headers, leading to a buffer overflow and potential remote code execution CVE-2018-18820...

8.1CVSS8.2AI score0.48944EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/11/14 12:0 a.m.25 views

openSUSE Security Update : icecast (openSUSE-2018-1395)

This update for icecast fixes the following security issues : - CVE-2018-18820: A buffer overflow in url-auth could have potentially allowed remote code execution boo1114434 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

8.1CVSS8.6AI score0.48944EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/11/14 12:0 a.m.24 views

openSUSE: Security Advisory for icecast (openSUSE-SU-2018:3754-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS8.1AI score0.48944EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/11/13 3:12 p.m.428 views

Security update for icecast (important)

This update for icecast fixes the following security issues: - CVE-2018-18820: A buffer overflow in url-auth could have potentially allowed remote code execution boo1114434...

4AI score0.48944EPSS
Exploits0References1
Fedora
Fedora
added 2018/11/13 2:28 a.m.28 views

[SECURITY] Fedora 28 Update: icecast-2.4.4-1.fc28

Icecast is a streaming media server which currently supports Ogg Vorbis and MP3 audio streams. It can be used to create an Internet radio station or a privately running jukebox and many things in between. It is very versatile in that new formats can be added relatively easily and supports open...

8.1CVSS3.9AI score0.48944EPSS
Exploits0
Fedora
Fedora
added 2018/11/13 2:25 a.m.24 views

[SECURITY] Fedora 29 Update: icecast-2.4.4-1.fc29

Icecast is a streaming media server which currently supports Ogg Vorbis and MP3 audio streams. It can be used to create an Internet radio station or a privately running jukebox and many things in between. It is very versatile in that new formats can be added relatively easily and supports open...

8.1CVSS3.9AI score0.48944EPSS
Exploits0
Fedora
Fedora
added 2018/11/13 2:15 a.m.43 views

[SECURITY] Fedora 27 Update: icecast-2.4.4-1.fc27

Icecast is a streaming media server which currently supports Ogg Vorbis and MP3 audio streams. It can be used to create an Internet radio station or a privately running jukebox and many things in between. It is very versatile in that new formats can be added relatively easily and supports open...

8.1CVSS3.9AI score0.48944EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/11/13 12:0 a.m.20 views

Fedora 27 : icecast (2018-f3d995c6a8)

This release fixes buffer overflows in URL authentication code CVE-2018-18820, a crash in htpasswd authentication if no filename is set, a crash on xsltApplyStylesheet error, and a crash on malformed Opus streams. It also corrects global listener counter. It stops displaying hashed user passwords...

8.1CVSS7.8AI score0.48944EPSS
Exploits0References2
Rows per page
Query Builder