Buffer Overflow in Icecast 2.0.1 and Earlier by Xiph.org
CVE-2004-1561

Currently unrated

Key Information:

Vendor

Icecast

Status
Icecast
Vendor
CVE Published:
31 December 2004

Badges

πŸ‘Ύ Exploit Exists🟑 Public PoC🟣 EPSS 78%

What is CVE-2004-1561?

A vulnerability exists in Icecast versions up to 2.0.1, where a buffer overflow can be triggered by sending an HTTP request with an abnormal quantity of headers. This flaw can allow remote attackers to execute arbitrary code on the affected system. Users of affected Icecast versions should upgrade to a safer release to mitigate potential risks associated with this vulnerability. For detailed security advice and mitigation steps, check the related resources for more information.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2004-1561 - Proof of Concept

CVE-2004-1561
Created by ivanitlearning

CVE-2004-1561-Notes
Created by thel1nus

References

http://www.securityfocus.com/bid/11271
vdb-entryx_refsource_BID
http://aluigi.altervista.org/adv/iceexec-adv.txt
x_refsource_MISC
http://secunia.com/advisories/12666/
third-party-advisoryx_refsource_SECUNIA

EPSS Score

78% chance of being exploited in the next 30 days.

Timeline

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • Vulnerability Reserved

  • Vulnerability published

.