CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2019-14247

MEDIUM
5.5
CVSS Severity Score
EPSS Score0.0390%
EPSS Percentile36.77th
Published2019年7月24日
Last Modified2024年11月21日

Vulnerability Description

The scan() function in mad.c in mpg321 0.3.2 allows remote attackers to trigger an out-of-bounds write via a zero bitrate in an MP3 file.

Affected Platforms (CPE)

📦
Mpg321 Project

Mpg321

= 0.3.2

References & Advisories

🔗 https://sourceforge.net/p/mpg321/bugs/51/
🔗 https://sourceforge.net/p/mpg321/bugs/51/

相關漏洞威脅

CVE-2002-027210.0

Buffer overflows in mpg321 before 0.2.9 allows local and possibly remote attackers to execute arbitrary code via a long URL to (1)...

CVE-2003-09697.5

mpg321 0.2.10 allows remote attackers to overwrite memory and possibly execute arbitrary code via an mp3 file that passes certain ...

CVE-2017-115526.5

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a d...

CVE-2019-1151010.0

In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated rem...