Published: 11/01/2005 Updated: 10/09/2008

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in mpg123 prior to 0.59s-r9 allows remote malicious users to execute arbitrary code via frame headers in MP2 or MP3 files.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mpg123 mpg123 0.59m
mpg123 mpg123 0.59o
mpg123 mpg123 0.59q
mpg123 mpg123 0.59r
mpg123 mpg123 0.59s
mpg123 mpg123 0.59n
mpg123 mpg123 0.59p
suse suse linux 9.0
suse suse linux 9.1
suse suse linux 9.2
suse suse linux 8.0
suse suse linux 8.2
suse suse linux 8.1

Debian Bug report logs - #361863 CVE-2006-1655: Unspecified vulnerability in mpg123 Package: mpg123; Maintainer for mpg123 is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Source for mpg123 is src:mpg123 (PTS, buildd, popcon) Reported by: Stefan Fritsch <sf@sfritschde> Date: Mon, 10 Apr 2006 20 ...

Debian Bug report logs - #740268 mp3gain: A malformed mp3 file allows arbitrary code execution Package: mp3gain; Maintainer for mp3gain is Scott Hardin <scottnhardin@gmailcom>; Source for mp3gain is src:mp3gain (PTS, buildd, popcon) Reported by: Gustavo Grieco <gustavogrieco@gmailcom> Date: Thu, 27 Feb 2014 16:48: ...

NVD-CWE-Other http://security.gentoo.org/glsa/glsa-200501-14.xml http://secunia.com/advisories/13779 http://www.securityfocus.com/bid/12218 http://secunia.com/advisories/13788 http://secunia.com/advisories/13899 http://www.mandriva.com/security/advisories?name=MDKSA-2005:009 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361863

CVE-2004-0991

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect