CVE-2004-0982 in mpg123info

Summary

Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

10/24/2004

Disclosure

02/09/2005

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-119

CVSS

10.0

EPSS

0.08227

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0982
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0982
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0982/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!