Lucene search

PRIOn knowledge basePRION:CVE-2007-0578

HistoryJan 30, 2007 - 5:28 p.m.

Design/Logic Flaw

2007-01-3017:28:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.019 Low

EPSS

Percentile

88.3%

JSON

The http_open function in httpget.c in mpg123 before 0.64 allows remote attackers to cause a denial of service (infinite loop) by closing the HTTP connection early.

CPENameOperatorVersion
mpg123eq0.59.110
mpg123eq0.59.114
mpg123eqpre0.59s-r11
mpg123eq0.59.113
mpg123eq0.62
mpg123eq0.59.109
mpg123eq0.59.111
mpg123eq0.59.0-s-pre
mpg123eq0.59.115
mpg123eq0.63

Name	Operator	Version
mpg123	eq	0.59.110
mpg123	eq	0.59.114
mpg123	eq	pre0.59s-r11
mpg123	eq	0.59.113
mpg123	eq	0.62
mpg123	eq	0.59.109
mpg123	eq	0.59.111
mpg123	eq	0.59.0-s-pre
mpg123	eq	0.59.115
mpg123	eq	0.63

Rows per page:

1-10 of 111

References

osvdb.org/40128

sourceforge.net/project/shownotes.php?group_id=135704&release_id=478747

www.mandriva.com/security/advisories?name=MDKSA-2007:032

www.mpg123.de/cgi-bin/news.cgi

www.securityfocus.com/bid/22274

www.vupen.com/english/advisories/2007/0366

6.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.019 Low

EPSS

Percentile

88.3%

JSON

Related for PRION:CVE-2007-0578