Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2004-0982

Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL.

  • Published: Feb 9, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-0982
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
mpg123 / mpg123 0.59r 0.59r.x
mpg123 / mpg123 pre0.59s pre0.59s.x