Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0991

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0991
Last Modified 10 Sep 2008 03:28:31
Published 11 Jan 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0991

Summary

Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to execute arbitrary code via frame headers in MP2 or MP3 files.

Vulnerable Systems

Operating System

  • Suse Linux 8.0

  • Suse Linux 8.1

  • Suse Linux 8.2

  • Suse Linux 9.0

  • Suse Linux 9.1

  • Suse Linux 9.2

Application

  • Mpg123 0.59m

  • Mpg123 0.59n

  • Mpg123 0.59o

  • Mpg123 0.59p

  • Mpg123 0.59q

  • Mpg123 0.59r

  • Mpg123 0.59s


References

GENTOO - GLSA-200501-14

SECUNIA - 13779

BID - 12218

MANDRAKE - MDKSA-2005:009

SECUNIA - 13899

SECUNIA - 13788


Last Updated: 27 May 2016 10:38:50