CVE-2004-0805
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2004-0805
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2004-0805.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2004-0805
- Downstream
- Published
- 2004-12-23T05:00:00Z
- Modified
- 2025-04-03T01:03:51Z
- Summary
- [none]
- Details
-
Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.
- References
-
- http://www.alighieri.org/advisories/advisory-mpg123.txt
- http://www.debian.org/security/2004/dsa-564
- http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:100
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/026151.html
- http://www.gentoo.org/security/en/glsa/glsa-200409-20.xml
- http://www.securityfocus.com/archive/1/374433
- http://www.securityfocus.com/bid/11121
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17287
- https://security-tracker.debian.org/tracker/CVE-2004-0805
Affected packages
Debian:11 / mp3gain
Package
- Name
- mp3gain
- Purl
- pkg:deb/debian/mp3gain?arch=source
Debian:12 / mp3gain
Package
- Name
- mp3gain
- Purl
- pkg:deb/debian/mp3gain?arch=source
Debian:13 / mp3gain
Package
- Name
- mp3gain
- Purl
- pkg:deb/debian/mp3gain?arch=source
Debian:11 / mpg123
Package
- Name
- mpg123
- Purl
- pkg:deb/debian/mpg123?arch=source
Debian:12 / mpg123
Package
- Name
- mpg123
- Purl
- pkg:deb/debian/mpg123?arch=source
Debian:13 / mpg123
Package
- Name
- mpg123
- Purl
- pkg:deb/debian/mpg123?arch=source