3 matches found
Code injection
Icecast before 2.4.0 does not change the supplementary group privileges when is configured, which allows local users to gain privileges via unspecified vectors...
[ MDVSA-2014:231 ] icecast
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:231 http://www.mandriva.com/en/support/security/ Package : icecast Date : November 27, 2014 Affected: Business Server 1.0 Problem Description: Updated icecast package fixes security vulnerability: Icecast di...
CVE-2004-2027
Buffer overflow in Icecast 2.0.0 and earlier allows remote attackers to cause a denial of service crash via a long Basic Authorization header that triggers an out-of-bounds read...