Lucene search

[email protected]CVE-2003-1091

HistoryMar 10, 2005 - 5:00 a.m.

CVE-2003-1091

2005-03-1005:00:00

[email protected]

web.nvd.nist.gov

security

integer overflow

mp3broadcaster

apple quicktime

darwin streaming server

denial of service

remote attackers

execution of arbitrary code

id3 tags

mp3 files

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.2 High

AI Score

Confidence

High

0.084 Low

EPSS

Percentile

94.5%

JSON

Integer overflow in MP3Broadcaster for Apple QuickTime/Darwin Streaming Server 4.1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed ID3 tags in MP3 files.

Affected configurations

NVD

Node

applequicktime_broadcasterMatch4.1.3

References

archives.neohapsis.com/archives/bugtraq/2003-05/0245.html

securitytracker.com/id?1006822

www.kb.cert.org/vuls/id/148564

www.securityfocus.com/bid/7660

exchange.xforce.ibmcloud.com/vulnerabilities/12054

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.2 High

AI Score

Confidence

High

0.084 Low

EPSS

Percentile

94.5%

JSON

Related for CVE-2003-1091

nvd1 cvelist1