CVE-2014-9018

Published: Dec 3, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Icecast before 2.4.1 transmits the output of the on-connect script, which might allow remote attackers to obtain sensitive information, related to shared file descriptors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20141120 CVE request: icecast: possible leak of on-connect scripts

mailing-list

x_refsource_MLIST

MDVSA-2014:231

vendor-advisory

x_refsource_MANDRIVA

http://icecast.org/news/icecast-release-2_4_1/

x_refsource_CONFIRM

https://trac.xiph.org/ticket/2087

x_refsource_CONFIRM

openSUSE-SU-2014:1593

vendor-advisory

x_refsource_SUSE

71312

vdb-entry

x_refsource_BID

https://trac.xiph.org/ticket/2089

x_refsource_CONFIRM

icecast-cve20149091-priv-esc(98991)

vdb-entry

x_refsource_XF

[oss-security] 20141120 Re: CVE request: icecast: possible leak of on-connect scripts

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-9018

Description

Affected Products

References