mpg321 0.2.10 allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain strings to the printf function, possibly triggering a format string vulnerability.
Max CVSS
7.5
EPSS Score
3.43%
Published
2004-01-20
Updated
2017-10-10
Buffer overflows in mpg321 before 0.2.9 allows local and possibly remote attackers to execute arbitrary code via a long URL to (1) a command line option, (2) an HTTP request, or (3) an FTP request.
Max CVSS
10.0
EPSS Score
4.72%
Published
2002-05-31
Updated
2016-10-18
2 vulnerabilities found