PT-2004-1186 · Mpg321 · Mpg321

Published

2004-01-20

Updated

2017-10-10

CVE-2003-0969

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions mpg321 version 0.2.10

Description The issue allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain strings to the printf function, possibly triggering a format string vulnerability.

Recommendations For mpg321 version 0.2.10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0969

DSA-411

Affected Products

Mpg321

PT-2004-1186 · Mpg321 · Mpg321

CVE-2003-0969

Related Identifiers

Affected Products

References · 9