CVE ID:	CVE-2003-0865
Description:	Heap-based buffer overflow in readstring of httpget.c for mpg123 0.59r and 0.59s allows remote attackers to execute arbitrary code via a long request.
Test IDs:	1.3.6.1.4.1.25623.1.0.53134   1.3.6.1.4.1.25623.1.0.52503   1.3.6.1.4.1.25623.1.0.51483
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0865 Bugtraq: 20030923 mpg123[v0.59r,v0.59s]: remote client-side heap corruption exploit. (Google Search) http://www.securityfocus.com/archive/1/338641 Bugtraq: 20030930 GLSA: mpg123 (200309-17) (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=106493686331198&w=2 Conectiva Linux advisory: CLA-2003:781 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000781 Debian Security Information: DSA-435 (Google Search) http://www.debian.org/security/2004/dsa-435 SCO Security Bulletin: CSSA-2004-002.0 ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2004-002.0/CSSA-2004-002.0.txt BugTraq ID: 8680 http://www.securityfocus.com/bid/8680

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: