Lucene search
HistoryNov 17, 2003 - 5:00 a.m.
CVE-2003-0865
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.445
Percentile
97.4%
Heap-based buffer overflow in readstring of httpget.c for mpg123 0.59r and 0.59s allows remote attackers to execute arbitrary code via a long request.
Affected configurations
Node
mpg123mpg123Match0.59r
ORmpg123mpg123Match0.59s
References
Related
cvelist
cvelist
CVE-2003-0865
2003-10-17 04:00:00
openvas
openvas
Debian Security Advisory DSA 435-1 (mpg123)
2008-01-17 00:00:00
Debian Security Advisory DSA 435-1 (mpg123)
2008-01-17 00:00:00
FreeBSD Ports: mpg123, mpg123-nas, mpg123-esound
2008-09-04 00:00:00
debiancve
debiancve
CVE-2003-0865
2003-11-17 05:00:00
nessus
nessus
Debian DSA-435-1 : mpg123 - heap overflow
2004-09-29 00:00:00
FreeBSD : mpg123 vulnerabilities (118)
2004-07-06 00:00:00
Mandrake Linux Security Advisory : mpg123 (MDKSA-2004:100)
2004-09-23 00:00:00
exploitdb
exploitdb
MPG123 0.59 - Remote File Play Heap Corruption
2003-09-23 00:00:00
osv
osv
mpg123 - heap overflow
2004-02-06 00:00:00
cve
cve
CVE-2003-0865
2003-11-17 05:00:00
debian
debian
[SECURITY] [DSA 435-1] New mpg123 packages fix heap overflow
2004-02-06 18:14:39
freebsd
freebsd
mpg123 vulnerabilities
2003-01-16 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.445
Percentile
97.4%
Related for NVD:CVE-2003-0865