Vulnerability Details : CVE-2018-18820
A buffer overflow was discovered in the URL-authentication backend of the Icecast before 2.4.4. If the backend is enabled, then any malicious HTTP client can send a request for that specific resource including a crafted header, leading to denial of service and potentially remote code execution.
Vulnerability category: OverflowExecute codeDenial of service
Products affected by CVE-2018-18820
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:xiph:icecast:*:*:*:*:*:*:*:*
Threat overview for CVE-2018-18820
Top countries where our scanners detected CVE-2018-18820
Top open port discovered on systems with this issue
8000
IPs affected by CVE-2018-18820 9,687
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2018-18820!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2018-18820
68.58%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-18820
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST | |
8.1
|
HIGH | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.2
|
5.9
|
NIST |
CWE ids for CVE-2018-18820
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-18820
-
https://www.debian.org/security/2018/dsa-4333
Debian -- Security Information -- DSA-4333-1 icecast2Third Party Advisory
-
http://www.securitytracker.com/id/1042019
Icecast url-auth Buffer Overflow Lets Remote Users Execute Arbitrary Code - SecurityTrackerThird Party Advisory;VDB Entry
-
http://www.openwall.com/lists/oss-security/2018/11/01/3
oss-security - Icecast 2.4.4 - CVE-2018-18820 - buffer overflow in url-authMailing List;Patch;Third Party Advisory
-
https://lists.debian.org/debian-lts-announce/2018/11/msg00033.html
[SECURITY] [DLA-1588-1] icecast2 security updateThird Party Advisory
-
https://security.gentoo.org/glsa/201811-09
Icecast: Arbitrary code execution (GLSA 201811-09) — Gentoo securityMitigation;Third Party Advisory
Jump to