Описание
IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).
Ссылки
- Vendor Advisory
- Exploit
- Exploit
- Exploit
- Vendor Advisory
- Exploit
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:icecast:icecast:2.0:*:*:*:*:*:*:*
cpe:2.3:a:icecast:icecast:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:icecast:icecast:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:icecast:icecast:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:icecast:icecast:2.2:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00528
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
больше 20 лет назад
IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).
debian
больше 20 лет назад
IceCast 2.20 allows remote attackers to bypass the XSL parser and obta ...
github
больше 3 лет назад
IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).
EPSS
Процентиль: 66%
0.00528
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other