PeerCast URL Error Message Format String

High Nessus Plugin ID 18417


The remote peer-to-peer application is affected by a format string vulnerability.


The version of PeerCast installed on the remote host suffers from a format string vulnerability. An attacker can issue requests containing format specifiers that will crash the server and potentially permit arbitrary code execution subject to privileges of the user under which the affected application runs.


Upgrade to PeerCast 0.1212 or later.

See Also

Plugin Details

Severity: High

ID: 18417

File Name: peercast_format_string.nasl

Version: $Revision: 1.13 $

Type: remote

Published: 2005/06/06

Modified: 2016/11/02

Dependencies: 18418

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: PeerCast/installed

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2005/05/28

Reference Information

CVE: CVE-2005-1806

BID: 13808

OSVDB: 16906