PT-2004-1186 · Mpg321 · Mpg321

Publicado

2004-01-20

Atualizado

2017-10-10

CVE-2003-0969

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions mpg321 version 0.2.10

Description The issue allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain strings to the printf function, possibly triggering a format string vulnerability.

Recommendations For mpg321 version 0.2.10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2003-0969

DSA-411

Produtos afetados

Mpg321

PT-2004-1186 · Mpg321 · Mpg321

CVE-2003-0969

Identificadores relacionados

Produtos afetados

Referências · 9