CyberSec.Space Logo
Back to CVE Browser

CVE-2008-0550

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile9.40th
PublishedFeb 1, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Off-by-one error in Steamcast 0.9.75 and earlier allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a certain HTTP request that leads to a buffer overflow, as demonstrated by a long User-Agent header.

Affected Platforms (CPE)

πŸ“¦
Radio Toolbox

Steamcast

<= 0.9.75

References & Advisories

πŸ”— http://aluigi.altervista.org/adv/steamcazz-adv.txt
πŸ”— http://aluigi.org/poc/steamcazz.zip
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/39928
πŸ”— http://aluigi.altervista.org/adv/steamcazz-adv.txt
πŸ”— http://aluigi.org/poc/steamcazz.zip
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/39928

Related Vulnerabilities

CVE-2008-05485.0

Steamcast 0.9.75 and earlier allows remote attackers to cause a denial of service (daemon crash) via a large integer in the Conten...

CVE-2008-05495.0

Integer overflow in the OggHeaderParse function in Steamcast 0.9.75 and earlier allows remote authenticated users to cause a denia...

CVE-2008-034410.0

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and remote a...

CVE-2008-034510.0

Unspecified vulnerability in the Core RDBMS component in Oracle Database 11.1.0.6 has unknown impact and remote attack vectors, ak...