Description
Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to execute arbitrary code via frame headers in MP2 or MP3 files.
References (6)
Core 6
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200501-14.xml
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/13899
Vendor Advisory vendor-advisory
x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:009
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/12218
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/13779
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/13788
Scores
EPSS
0.0503
EPSS Percentile
89.8%
Details
Status
published
Products (13)
mpg123/mpg123
0.59m
mpg123/mpg123
0.59n
mpg123/mpg123
0.59o
mpg123/mpg123
0.59p
mpg123/mpg123
0.59q
mpg123/mpg123
0.59r
mpg123/mpg123
0.59s
suse/suse_linux
8.0 (2 CPE variants)
suse/suse_linux
8.1
suse/suse_linux
8.2
... and 3 more
Published
Jan 11, 2005
Tracked Since
Feb 18, 2026