CVE-2005-0837

Description

IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).

How to fix CVE-2005-0837

No fixed version has been published yet. Mitigate by removing the affected package or applying upstream guidance from the references below.

• Debian/icecast2—no fix listed

Is CVE-2005-0837 being exploited?

Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2005-0837