Threat Level: green Handler on Duty: Yee Ching Tok

SANS ISC: SHOUTCAST <= 1.9.4 Vulnerability, Exploit Available SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
SHOUTCAST <= 1.9.4 Vulnerability, Exploit Available

On December 26, 2005, Secunia released an advisory regarding a vulnerabilty in Shoutcast.  We've received a report about a few sites detecting odd log entries that fit the vulnerability description, with corresponding server crashes over the past few days.  An exploit has been published on, at least, one site.  The solution is to update to the latest version (v.1.9.5).  The advisory is available at Secunia.

The default port for SHOUTcast is 8000--Dshield shows a spike in targets on the 14th and more recently.



-db

Dave Brookshire (http://parapet.net)
Handler-on-Duty

Dave

17 Posts
Jan 29th 2006

Sign Up for Free or Log In to start participating in the conversation!