Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-0805
HistoryDec 23, 2004 - 5:00 a.m.

CVE-2004-0805

2004-12-2305:00:00
mitre
web.nvd.nist.gov
36
cve
2004
0805
buffer overflow
mpg123
remote code execution
layer2.c
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.116

Percentile

95.3%

JSON

Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.

Affected configurations

Nvd
Node
mpg123mpg123Match0.59r
OR
mpg123mpg123Match0.59s
Node
mandrakesoftmandrake_linuxMatch9.2
OR
mandrakesoftmandrake_linuxMatch9.2amd64
OR
mandrakesoftmandrake_linuxMatch10.0
OR
mandrakesoftmandrake_linuxMatch10.0amd64
OR
mandrakesoftmandrake_linux_corporate_serverMatch2.1
OR
mandrakesoftmandrake_linux_corporate_serverMatch2.1x86_64
VendorProductVersionCPE
mpg123mpg1230.59scpe:/a:mpg123:mpg123:0.59s:::
mpg123mpg1230.59rcpe:/a:mpg123:mpg123:0.59r:::

Related

nessus 5
gentoo 1
ubuntucve 1
debian 2
freebsd 1
securityvulns 1
openvas 6
debiancve 1
nvd 1
cvelist 1
suse 1
nessus
nessus
Debian DSA-564-1 : mpg123 - missing user input sanitising
2004-11-10 00:00:00
GLSA-200409-20 : mpg123: Buffer overflow vulnerability
2004-09-16 00:00:00
FreeBSD : mpg123 buffer overflow (15e0e963-02ed-11d9-a209-00061bc2ad93)
2009-04-23 00:00:00
gentoo
gentoo
mpg123: Buffer overflow vulnerability
2004-09-16 00:00:00
ubuntucve
ubuntucve
CVE-2004-0805
2004-12-23 00:00:00
debian
debian
[SECURITY] [DSA 564-1] New mpg123 packages fix arbitrary code exceution
2004-10-13 13:00:34
[SECURITY] [DSA 564-1] New mpg123 packages fix arbitrary code exceution
2004-10-13 13:00:34
freebsd
freebsd
mpg123 buffer overflow
2003-08-16 00:00:00
securityvulns
securityvulns
[Full-Disclosure] mpg123 buffer overflow vulnerability
2004-09-08 00:00:00
openvas
openvas
Debian Security Advisory DSA 564-1 (mpg123)
2008-01-17 00:00:00
FreeBSD Ports: mpg123, mpg123-nas, mpg123-esound
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200409-20 (mpg123)
2008-09-24 00:00:00
debiancve
debiancve
CVE-2004-0805
2004-12-23 05:00:00
nvd
nvd
CVE-2004-0805
2004-12-23 05:00:00
cvelist
cvelist
CVE-2004-0805
2004-10-20 04:00:00
suse
suse
remote code execution in cups
2004-09-15 14:45:26

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.116

Percentile

95.3%

JSON
Related for CVE-2004-0805
nessus5gentoo1ubuntucve1debian2freebsd1securityvulns1openvas6debiancve1nvd1cvelist1suse1