CVE-2002-0177

icecast <= 1.3.11 - Remote Code Execution via Long HTTP GET Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0177. PoCs published by dizznutt.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Icecast versions up to 1.3.11. It sends a crafted HTTP GET request to overflow the stack and execute arbitrary shellcode, resulting in remote code execution with the privileges of the Icecast server.

Description

Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from an MP3 client.

Exploits (1)

exploitdb WORKING POC VERIFIED

by dizznutt · cremoteunix

https://www.exploit-db.com/exploits/21363

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Icecast versions up to 1.3.11. It sends a crafted HTTP GET request to overflow the stack and execute arbitrary shellcode, resulting in remote code execution with the privileges of the Icecast server.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Icecast up to 1.3.11

No auth needed

Prerequisites: Network access to the Icecast server · Icecast server running on a vulnerable version

MITRE ATT&CK