Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mpg123 vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2004-1284
Buffer overflow in the find_next_file function in playlist.c for mpg123 0.59r allows remote malicious users to execute arbitrary code via a crafted MP3 playlist.
Mpg123 Mpg123 0.59m
Mpg123 Mpg123 0.59p
Mpg123 Mpg123 0.59q
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 Pre0.59s
Mpg123 Mpg123 0.59n
Mpg123 Mpg123 0.59o
1 EDB exploit
890
VMScore
CVE-2009-1301
Integer signedness error in the store_id3_text function in the ID3v2 code in mpg123 prior to 1.7.2 allows remote malicious users to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code via an ID3 tag with a negative encoding value. NOTE: som...
Mpg123 Mpg123 0.59m
Mpg123 Mpg123 0.59n
Mpg123 Mpg123 0.59o
Mpg123 Mpg123 0.59p
Mpg123 Mpg123 1.6.3
Mpg123 Mpg123
Mpg123 Mpg123 0.59q
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 1.7.0
Mpg123 Mpg123 1.6.4
Mpg123 Mpg123 0.62
Mpg123 Mpg123 0.59s
Mpg123 Mpg123 Pre0.59s
Mpg123 Mpg123 Pre0.59s R11
890
VMScore
CVE-2004-0982
Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL.
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 Pre0.59s
828
VMScore
CVE-2007-4396
Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts for irssi prior to 0.8.11 allow user-assisted remote malicious users to execute ar...
Irssi Irssi
755
VMScore
CVE-2006-3355
Heap-based buffer overflow in httpdget.c in mpg123 prior to 0.59s-rll allows remote malicious users to execute arbitrary code via a long URL, which is not properly terminated before being used with the strncpy function. NOTE: This appears to be the result of an incomplete patch f...
Mpg123 Mpg123 Pre0.59s R11
1 EDB exploit
755
VMScore
CVE-2003-0865
Heap-based buffer overflow in readstring of httpget.c for mpg123 0.59r and 0.59s allows remote malicious users to execute arbitrary code via a long request.
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 0.59s
1 EDB exploit
668
VMScore
CVE-2004-0991
Buffer overflow in mpg123 prior to 0.59s-r9 allows remote malicious users to execute arbitrary code via frame headers in MP2 or MP3 files.
Mpg123 Mpg123 0.59m
Mpg123 Mpg123 0.59o
Mpg123 Mpg123 0.59q
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 0.59s
Mpg123 Mpg123 0.59n
Mpg123 Mpg123 0.59p
Suse Suse Linux 9.0
Suse Suse Linux 9.1
Suse Suse Linux 9.2
Suse Suse Linux 8.0
Suse Suse Linux 8.2
Suse Suse Linux 8.1
668
VMScore
CVE-2004-0805
Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote malicious users to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 0.59s
Mandrakesoft Mandrake Linux 9.2
Mandrakesoft Mandrake Linux Corporate Server 2.1
Mandrakesoft Mandrake Linux 10.0
668
VMScore
CVE-2003-0577
mpg123 0.59r allows remote malicious users to cause a denial of service and possibly execute arbitrary code via an MP3 file with a zero bitrate, which creates a negative frame size.
Mpg123 Mpg123 0.59r
Mpg123 Mpg123 Pre0.59s
605
VMScore
CVE-2017-12839
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 up to and including 1.25.5 allows remote malicious users to cause a possible denial-of-service (out-of-bounds read) or possibly have unspecified other impact via a crafted mp3 file.
Mpg123 Mpg123
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »