CVE-2004-1284

  • Last update: Apr 13, 2023

Description

Buffer overflow in the find_next_file function in playlist.c for mpg123 0.59r allows remote attackers to execute arbitrary code via a crafted MP3 playlist.

Software From Fixed in
mpg123 / mpg123 0.59m 0.59m.x
mpg123 / mpg123 0.59n 0.59n.x
mpg123 / mpg123 0.59o 0.59o.x
mpg123 / mpg123 0.59p 0.59p.x
mpg123 / mpg123 0.59q 0.59q.x
mpg123 / mpg123 0.59r 0.59r.x
mpg123 / mpg123 pre0.59s pre0.59s.x

Details

    • Severity: High
  • CVE: CVE-2004-1284
  • Published: Jan 10, 2005
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C