CVE-2005-0838
published 2005-05-02CVE-2005-0838: Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a…
PriorityP433high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
9.45%
94.8th percentile
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | icecast2 | — | — |
| icecast | icecast | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-857r-3f6j-392f: Multiple buffer overflows in the XSL parser for IceCast 2
ghsa_unreviewed·2022-05-01
CVE-2005-0838 [HIGH] GHSA-857r-3f6j-392f: Multiple buffer overflows in the XSL parser for IceCast 2
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.
OSV
CVE-2005-0838: Multiple buffer overflows in the XSL parser for IceCast 2
osv·2005-05-02·CVSS 7.5
CVE-2005-0838 [HIGH] CVE-2005-0838: Multiple buffer overflows in the XSL parser for IceCast 2
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.
Debian
CVE-2005-0838: icecast2 - Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers...
vendor_debian·2005·CVSS 7.5
CVE-2005-0838 [HIGH] CVE-2005-0838: icecast2 - Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers...
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.
Scope: local
bookworm: open
bullseye: open
forky: open
sid: open
trixie: open
No detection rules found.
No writeups or analysis indexed.
http://securitytracker.com/id?1013475http://www.securityfocus.com/archive/1/393705http://www.securityfocus.com/bid/12849https://exchange.xforce.ibmcloud.com/vulnerabilities/19753http://securitytracker.com/id?1013475http://www.securityfocus.com/archive/1/393705http://www.securityfocus.com/bid/12849https://exchange.xforce.ibmcloud.com/vulnerabilities/19753
2005-05-02
Published