CVE-2019-14247

MEDIUM

5.5

CVSS Severity Score

EPSS Score0.0390%

EPSS Percentile36.77th

PublishedJul 24, 2019

Last ModifiedNov 21, 2024

Vulnerability Description

The scan() function in mad.c in mpg321 0.3.2 allows remote attackers to trigger an out-of-bounds write via a zero bitrate in an MP3 file.

📦

Mpg321 Project

= 0.3.2

Buffer overflows in mpg321 before 0.2.9 allows local and possibly remote attackers to execute arbitrary code via a long URL to (1)...

mpg321 0.2.10 allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain ...

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a d...

Zoho ManageEngine ADSelfService Plus 5.x before build 5703 has SSRF.