Icecast : Security Vulnerabilities, CVEs, (Directory traversal) CVSS score >= 2
Directory traversal vulnerability in the list_directory function in Icecast 1.3.12 allows remote attackers to determine if a directory exists via a .. (dot dot) in the GET request, which returns different error messages depending on whether the directory exists or not.
Max CVSS
5.0
EPSS Score
3.68%
Published
2002-12-31
Updated
2008-09-05
Directory traversal vulnerability in Icecast 1.3.10 and earlier allows remote attackers to read arbitrary files via a modified .. (dot dot) attack using encoded URL characters.
Max CVSS
5.0
EPSS Score
1.33%
Published
2001-10-18
Updated
2017-10-10
2 vulnerabilities found