APP: Icecast 2.0 Server Header Overwrite (1)
This signature detects attempts to exploit a known vulnerability against Icecast Server 2.0. Versions 2.0.1 and 2.0 are vulnerable. Attackers can remotely exploit this vulnerability by sending headers that exceed numbers by 31, allowing for complete control over the target computer.
Extended Description
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large number of headers.
Affected Products
Icecast icecast
References
BugTraq: 11271
CVE: CVE-2004-1561
URL: http://www.securiteam.com/exploits/6X00315BFM.html http://www.securityfocus.com/archive/1/376708
Short Name
APP:ICECAST-BOF-1
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
(1) 2.0 CVE-2004-1561 Header Icecast Overwrite Server bid:11271
Release Date
05/17/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/8000
False Positive
Unknown
Vendors
Icecast
CVSS Score
7.5