Lucene search
GoogleOSV:DSA-411HistoryJan 05, 2004 - 12:00 a.m.
mpg321 - format string vulnerability
2004-01-0500:00:00
Google
osv.dev
6
0.034 Low
EPSS
Percentile
91.5%
A vulnerability was discovered in mpg321, a command-line mp3 player,
whereby user-supplied strings were passed to printf(3) unsafely. This
vulnerability could be exploited by a remote attacker to overwrite
memory, and possibly execute arbitrary code. In order for this
vulnerability to be exploited, mpg321 would need to play a malicious
mp3 file (including via HTTP streaming).
For the current stable distribution (woody) this problem has been
fixed in version 0.2.10.2.
For the unstable distribution (sid) this problem has been fixed in
version 0.2.10.3.
We recommend that you update your mpg321 package.
References
Related
debiancve
debiancve
CVE-2003-0969
2004-09-01 04:00:00
cve
cve
CVE-2003-0969
2004-09-01 04:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200503-34 (mpg321)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-411)
2008-01-17 00:00:00
Debian Security Advisory DSA 411-1 (mpg321)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2003-0969
2004-01-20 00:00:00
nessus
nessus
Debian DSA-411-1 : mpg321 - format string vulnerability
2004-09-29 00:00:00
GLSA-200503-34 : mpg321: Format string vulnerability
2005-03-29 00:00:00
gentoo
gentoo
mpg321: Format string vulnerability
2005-03-28 00:00:00
securityvulns
securityvulns
[Full-disclosure] [ GLSA 200503-34 ] mpg321: Format string vulnerability
2005-03-28 00:00:00
cvelist
cvelist
CVE-2003-0969
2004-09-01 04:00:00
nvd
nvd
CVE-2003-0969
2004-01-20 05:00:00
debian
debian
[SECURITY] [DSA 411-1] New mpg321 packages fix format string vulnerability
2004-01-06 02:52:04
suse
suse
remote DoS in tcpdump
2004-01-14 14:14:50