Vulnerabilities > CVE-2002-1470 - Unspecified vulnerability in Nullsoft Shoutcast Server 1.8.9
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
SHOUTcast 1.8.9 and earlier allows local users to obtain the cleartext administrative password via a GET request to port 8001, which causes the password to be logged in the world-readable sc_serv.log file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-08/0017.html
- http://archives.neohapsis.com/archives/bugtraq/2002-08/0017.html
- http://www.iss.net/security_center/static/9775.php
- http://www.iss.net/security_center/static/9775.php
- http://www.securityfocus.com/bid/5414
- http://www.securityfocus.com/bid/5414