CVE-2005-0838

Name of the Vulnerable Software and Affected Versions IceCast version 2.20

Description The issue is related to multiple buffer overflows in the XSL parser, which may allow attackers to cause a denial of service and possibly execute arbitrary code. This can be achieved through a long test value in an xsl:when tag, a long test value in an xsl:if tag, or a long select value in an xsl:value-of tag.

Recommendations For IceCast version 2.20, consider disabling the XSL parser functionality until a patch is available to prevent potential exploitation. Restrict access to the XSL parser to minimize the risk of denial of service or arbitrary code execution. Avoid using long test values in xsl:when and xsl:if tags, as well as long select values in xsl:value-of tags, in the affected XSL parser.