Nullsoft: >> Shoutcast Server >> 1.8.2 Security Vulnerabilities
Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.6 filters directory traversal sequences before decoding, which allows remote attackers to read arbitrary files via encoded dot dot (%2E%2E) sequences in an HTTP GET request for a file path containing "/content".
CVSS Score
7.8
EPSS Score
0.01
Published
2006-07-12
Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header.
CVSS Score
5.0
EPSS Score
0.006
Published
2001-08-03