Vulnerabilities > Mpg123 > Mpg123 > 0.59r
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-04-16 | CVE-2009-1301 | Numeric Errors vulnerability in Mpg123 Integer signedness error in the store_id3_text function in the ID3v2 code in mpg123 before 1.7.2 allows remote attackers to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code via an ID3 tag with a negative encoding value. | 10.0 |
2007-01-30 | CVE-2007-0578 | Denial of Service vulnerability in MPG123 HTTP_Open() Connection Handling The http_open function in httpget.c in mpg123 before 0.64 allows remote attackers to cause a denial of service (infinite loop) by closing the HTTP connection early. network mpg123 | 4.3 |
2006-04-06 | CVE-2006-1655 | Unspecified vulnerability in Mpg123 0.59R Multiple buffer overflows in mpg123 0.59r allow user-assisted attackers to trigger a segmentation fault and possibly have other impacts via a certain MP3 file, as demonstrated by mpg1DoS3. | 6.5 |
2005-02-09 | CVE-2004-0982 | Remote URL Open Buffer Overflow vulnerability in Mpg123 0.59R/Pre0.59S Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL. | 10.0 |
2005-01-11 | CVE-2004-0991 | Heap Overflow vulnerability in MPG123 Layer 2 Frame Header Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to execute arbitrary code via frame headers in MP2 or MP3 files. | 7.5 |
2005-01-10 | CVE-2004-1284 | Unspecified vulnerability in Mpg123 Buffer overflow in the find_next_file function in playlist.c for mpg123 0.59r allows remote attackers to execute arbitrary code via a crafted MP3 playlist. | 10.0 |
2004-12-23 | CVE-2004-0805 | Remote Stereo Boundary Buffer Overflow vulnerability in MPG123 Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file. | 7.5 |
2003-11-17 | CVE-2003-0865 | Remote File Play Heap Corruption vulnerability in Mpg123 0.59R/0.59S Heap-based buffer overflow in readstring of httpget.c for mpg123 0.59r and 0.59s allows remote attackers to execute arbitrary code via a long request. | 7.5 |
2003-08-18 | CVE-2003-0577 | Unspecified vulnerability in Mpg123 0.59R/Pre0.59S mpg123 0.59r allows remote attackers to cause a denial of service and possibly execute arbitrary code via an MP3 file with a zero bitrate, which creates a negative frame size. | 7.5 |