VYPR

Shoutcast Dsp

by Nullsoft

CVEs (3)

  • CVE-2006-3535Jul 12, 2006
    risk 0.00cvss epss 0.04

    Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.7 allows remote attackers to read arbitrary files via unspecified vectors that are a "slight variation" of CVE-2006-3534.

  • CVE-2006-3534Jul 12, 2006
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.6 filters directory traversal sequences before decoding, which allows remote attackers to read arbitrary files via encoded dot dot (%2E%2E) sequences in an HTTP GET request for a file path containing…

  • CVE-1999-1561Aug 20, 1999
    risk 0.00cvss epss 0.00

    Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server.