XSL Parser Bypass in IceCast by Xiph.org
CVE-2005-0837

Currently unrated

Key Information:

Vendor: Icecast
Status: Icecast
Vendor: CVE Published:; 2 May 2005

What is CVE-2005-0837?

IceCast version 2.20 contains a vulnerability that allows remote attackers to bypass the XSL parser. By crafting a request for a .xsl file with a trailing dot, attackers can gain unauthorized access to the source of XSL files. This security flaw can lead to potential exposure of sensitive data, making IceCast installations susceptible to various exploits.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/19760

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/393705

mailing-listx_refsource_BUGTRAQ

http://securitytracker.com/id?1013475

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Mar 22, 2005

CVE-2005-0837 Data

JSON

Icecast

What is CVE-2005-0837?

References

Timeline