Lucene search

[email protected]NVD:CVE-2004-0805

HistoryDec 23, 2004 - 5:00 a.m.

CVE-2004-0805

2004-12-2305:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.116

Percentile

95.3%

JSON

Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.

Affected configurations

Nvd

Node

mpg123mpg123Match0.59r

mpg123mpg123Match0.59s

Node

mandrakesoftmandrake_linuxMatch9.2

mandrakesoftmandrake_linuxMatch9.2amd64

mandrakesoftmandrake_linuxMatch10.0

mandrakesoftmandrake_linuxMatch10.0amd64

mandrakesoftmandrake_linux_corporate_serverMatch2.1

mandrakesoftmandrake_linux_corporate_serverMatch2.1x86_64

References

lists.grok.org.uk/pipermail/full-disclosure/2004-September/026151.html

www.alighieri.org/advisories/advisory-mpg123.txt

www.debian.org/security/2004/dsa-564

www.gentoo.org/security/en/glsa/glsa-200409-20.xml

www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:100

www.securityfocus.com/archive/1/374433

www.securityfocus.com/bid/11121

exchange.xforce.ibmcloud.com/vulnerabilities/17287

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.116

Percentile

95.3%

JSON

Related for NVD:CVE-2004-0805

nessus5 gentoo1 ubuntucve1 debian2 freebsd1 securityvulns1 openvas6 debiancve1 cve1 cvelist1 suse1