Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mpg123 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2017-12839
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 up to and including 1.25.5 allows remote malicious users to cause a possible denial-of-service (out-of-bounds read) or possibly have unspecified other impact via a crafted mp3 file.
Mpg123 Mpg123
755
VMScore
CVE-2006-3355
Heap-based buffer overflow in httpdget.c in mpg123 prior to 0.59s-rll allows remote malicious users to execute arbitrary code via a long URL, which is not properly terminated before being used with the strncpy function. NOTE: This appears to be the result of an incomplete patch f...
Mpg123 Mpg123 Pre0.59s R11
1 EDB exploit
445
VMScore
CVE-2017-10683
In mpg123 1.25.0, there is a heap-based buffer over-read in the convert_latin1 function in libmpg123/id3.c. A crafted input will lead to a remote denial of service attack.
Mpg123 Mpg123 1.25.0
383
VMScore
CVE-2017-9545
The next_text function in src/libmpg123/id3.c in mpg123 1.24.0 allows remote malicious users to cause a denial of service (buffer over-read) via a crafted mp3 file.
Mpg123 Mpg123 1.24.0
578
VMScore
CVE-2006-1655
Multiple buffer overflows in mpg123 0.59r allow user-assisted malicious users to trigger a segmentation fault and possibly have other impacts via a certain MP3 file, as demonstrated by mpg1DoS3. NOTE: this issue might be related to CVE-2004-0991, but it is not clear.
Mpg123 Mpg123 0.59r
668
VMScore
CVE-2004-0805
Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote malicious users to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 0.59s
Mandrakesoft Mandrake Linux 9.2
Mandrakesoft Mandrake Linux Corporate Server 2.1
Mandrakesoft Mandrake Linux 10.0
605
VMScore
CVE-2007-4397
Multiple CRLF injection vulnerabilities in (1) xmms-thing 1.0, (2) XMMS Remote Control Script 1.07, (3) Disrok 1.0, (4) a2x 0.0.1, (5) Another xmms-info script 1.0, (6) XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote malicious users to execute...
Ricardo Mesquita Ogg123 0.01
Simon Xmms2 1.1.3
Mikachu L33t Xmms Music Showing Script 2.00
Ricardo Mesquita Mpg123 0.01
Kristof Korwisi Ixmmsa 0.3
Tuomas Jormola Xmmsinfo 1.1.1.1
Irssi Irssi
NA
CVE-2016-1000247
mpg123: CVE-2016-1000247: denial of service with crafted id3v2 tags
828
VMScore
CVE-2007-4396
Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts for irssi prior to 0.8.11 allow user-assisted remote malicious users to execute ar...
Irssi Irssi
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2