CVE-2004-0982
published 2005-02-09CVE-2004-0982: Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute…
PriorityP433critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
6.53%
92.9th percentile
Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | mpg123 | < mpg123 0.60-1 (bookworm) | mpg123 0.60-1 (bookworm) |
| debian | mpg123 | < mpg123 0.59r-18 (bookworm) | mpg123 0.59r-18 (bookworm) |
| mpg123 | mpg123 | — | — |
| mpg123 | mpg123 | — | — |
| mpg123 | mpg123 | — | — |
| mpg123 | mpg123 | >= 0 < 0.60-1 | 0.60-1 |
| mpg123 | mpg123 | >= 0 < 0.59r-18 | 0.59r-18 |
| mpg123 | mpg123 | >= 0 < 0.60-1 | 0.60-1 |
| mpg123 | mpg123 | >= 0 < 0.59r-18 | 0.59r-18 |
| mpg123 | mpg123 | >= 0 < 0.60-1 | 0.60-1 |
| mpg123 | mpg123 | >= 0 < 0.59r-18 | 0.59r-18 |
| mpg123 | mpg123 | >= 0 < 0.60-1 | 0.60-1 |
| mpg123 | mpg123 | >= 0 < 0.59r-18 | 0.59r-18 |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
osv10.0CRITICAL
vendor_debian10.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fm9r-pg68-hhrm: Heap-based buffer overflow in httpdget
ghsa_unreviewed·2022-05-01·CVSS 10.0
CVE-2006-3355 [CRITICAL] GHSA-fm9r-pg68-hhrm: Heap-based buffer overflow in httpdget
Heap-based buffer overflow in httpdget.c in mpg123 before 0.59s-rll allows remote attackers to execute arbitrary code via a long URL, which is not properly terminated before being used with the strncpy function. NOTE: This appears to be the result of an incomplete patch for CVE-2004-0982.
GHSA
GHSA-j759-7prh-q6f5: Buffer overflow in the getauthfromURL function in httpget
ghsa_unreviewed·2022-04-29
CVE-2004-0982 [HIGH] GHSA-j759-7prh-q6f5: Buffer overflow in the getauthfromURL function in httpget
Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL.
OSV
CVE-2006-3355: Heap-based buffer overflow in httpdget
osv·2006-07-06·CVSS 10.0
CVE-2006-3355 [CRITICAL] CVE-2006-3355: Heap-based buffer overflow in httpdget
Heap-based buffer overflow in httpdget.c in mpg123 before 0.59s-rll allows remote attackers to execute arbitrary code via a long URL, which is not properly terminated before being used with the strncpy function. NOTE: This appears to be the result of an incomplete patch for CVE-2004-0982.
OSV
CVE-2004-0982: Buffer overflow in the getauthfromURL function in httpget
osv·2005-02-09·CVSS 10.0
CVE-2004-0982 [CRITICAL] CVE-2004-0982: Buffer overflow in the getauthfromURL function in httpget
Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL.
Debian
CVE-2006-3355: mpg123 - Heap-based buffer overflow in httpdget.c in mpg123 before 0.59s-rll allows remot...
vendor_debian·2006·CVSS 10.0
CVE-2006-3355 [CRITICAL] CVE-2006-3355: mpg123 - Heap-based buffer overflow in httpdget.c in mpg123 before 0.59s-rll allows remot...
Heap-based buffer overflow in httpdget.c in mpg123 before 0.59s-rll allows remote attackers to execute arbitrary code via a long URL, which is not properly terminated before being used with the strncpy function. NOTE: This appears to be the result of an incomplete patch for CVE-2004-0982.
Scope: local
bookworm: resolved (fixed in 0.60-1)
bullseye: resolved (fixed in 0.60-1)
forky: resolved (fixed in 0.60-1)
sid: resolved (fixed in 0.60-1)
trixie: resolved (fixed in 0.60-1)
Debian
CVE-2004-0982: mpg123 - Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s a...
vendor_debian·2004·CVSS 10.0
CVE-2004-0982 [CRITICAL] CVE-2004-0982: mpg123 - Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s a...
Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL.
Scope: local
bookworm: resolved (fixed in 0.59r-18)
bullseye: resolved (fixed in 0.59r-18)
forky: resolved (fixed in 0.59r-18)
sid: resolved (fixed in 0.59r-18)
trixie: resolved (fixed in 0.59r-18)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=109834486312407&w=2http://secunia.com/advisories/12908http://securitytracker.com/id?1011832http://www.barrossecurity.com/advisories/mpg123_getauthfromurl_bof_advisory.txthttp://www.debian.org/security/2004/dsa-578http://www.gentoo.org/security/en/glsa/glsa-200410-27.xmlhttp://www.osvdb.org/11023http://www.securityfocus.com/bid/11468https://exchange.xforce.ibmcloud.com/vulnerabilities/17574http://marc.info/?l=bugtraq&m=109834486312407&w=2http://secunia.com/advisories/12908http://securitytracker.com/id?1011832http://www.barrossecurity.com/advisories/mpg123_getauthfromurl_bof_advisory.txthttp://www.debian.org/security/2004/dsa-578http://www.gentoo.org/security/en/glsa/glsa-200410-27.xmlhttp://www.osvdb.org/11023http://www.securityfocus.com/bid/11468https://exchange.xforce.ibmcloud.com/vulnerabilities/17574
2005-02-09
Published