CyberSec.Space Logo
返回 CVE 浏览器

CVE-2002-0272

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1730%
EPSS Percentile44.19th
Published2002年5月31日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflows in mpg321 before 0.2.9 allows local and possibly remote attackers to execute arbitrary code via a long URL to (1) a command line option, (2) an HTTP request, or (3) an FTP request.

Affected Platforms (CPE)

📦
Mpg321

Mpg321

= 0.2.2
📦
Mpg321

Mpg321

= 0.2.3
📦
Mpg321

Mpg321

= 0.2.9

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=101366518310823&w=2
🔗 http://marc.info/?l=vuln-dev&m=101355590918475&w=2
🔗 http://sourceforge.net/project/shownotes.php?release_id=79237
🔗 http://www.securityfocus.com/bid/4091
🔗 http://marc.info/?l=bugtraq&m=101366518310823&w=2
🔗 http://marc.info/?l=vuln-dev&m=101355590918475&w=2
🔗 http://sourceforge.net/project/shownotes.php?release_id=79237
🔗 http://www.securityfocus.com/bid/4091

相关漏洞威胁

CVE-2003-09697.5

mpg321 0.2.10 allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain ...

CVE-2017-115526.5

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a d...

CVE-2019-142475.5

The scan() function in mad.c in mpg321 0.3.2 allows remote attackers to trigger an out-of-bounds write via a zero bitrate in an MP...

CVE-2002-135910.0

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause ...