Vulnerability Description
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Icecast | Icecast | 2.20 |
References
- http://securitytracker.com/id?1013475Exploit
- http://www.securityfocus.com/archive/1/393705Exploit
- http://www.securityfocus.com/bid/12849Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19753
- http://securitytracker.com/id?1013475Exploit
- http://www.securityfocus.com/archive/1/393705Exploit
- http://www.securityfocus.com/bid/12849Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19753
FAQ
What is CVE-2005-0838?
CVE-2005-0838 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a lo...
How severe is CVE-2005-0838?
CVE-2005-0838 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0838?
Check the references section above for vendor advisories and patch information. Affected products include: Icecast Icecast.