Vulnerabilities > Mpg123 > Mpg123 > 0.59s
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-04-16 | CVE-2009-1301 | Numeric Errors vulnerability in Mpg123 Integer signedness error in the store_id3_text function in the ID3v2 code in mpg123 before 1.7.2 allows remote attackers to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code via an ID3 tag with a negative encoding value. | 10.0 |
2007-01-30 | CVE-2007-0578 | Denial of Service vulnerability in MPG123 HTTP_Open() Connection Handling The http_open function in httpget.c in mpg123 before 0.64 allows remote attackers to cause a denial of service (infinite loop) by closing the HTTP connection early. network mpg123 | 4.3 |
2005-01-11 | CVE-2004-0991 | Heap Overflow vulnerability in MPG123 Layer 2 Frame Header Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to execute arbitrary code via frame headers in MP2 or MP3 files. | 7.5 |
2004-12-23 | CVE-2004-0805 | Remote Stereo Boundary Buffer Overflow vulnerability in MPG123 Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file. | 7.5 |
2003-11-17 | CVE-2003-0865 | Remote File Play Heap Corruption vulnerability in Mpg123 0.59R/0.59S Heap-based buffer overflow in readstring of httpget.c for mpg123 0.59r and 0.59s allows remote attackers to execute arbitrary code via a long request. | 7.5 |