Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file.

The mpg123 software version 0.59r contains a buffer overflow vulnerability which may permit the execution of arbitrary code as the owner of the mpg123 process.

Davide Del Vecchio discovered a vulnerability in mpg123, a popular (but non-free) MPEG layer 1/2/3 audio player. A malicious MPEG layer 2/3 file could cause the header checks in mpg123 to fail, which could in turn allow arbitrary code to be executed with the privileges of the user running mpg123.

A vulnerability in mpg123 was discovered by Davide Del Vecchio where certain malicious mpg3/2 files would cause mpg123 to fail header checks, which could in turn allow arbitrary code to be executed with the privileges of the user running mpg123 (CVE-2004-0805).

As well, an older vulnerability in mpg123, where a response from a remote HTTP server could overflow a buffer allocated on the heap, is also fixed in these packages. This vulnerability could also potentially permit the execution of arbitrary code with the privileges of the user running mpg123 (CVE-2003-0865).

The remote host is affected by the vulnerability described in GLSA-200409-20 (mpg123: Buffer overflow vulnerability)

    mpg123 contains a buffer overflow in the code that handles layer2     decoding of media files.
  Impact :

    An attacker can possibly exploit this bug with a specially crafted mp3 or mp2 file     to execute arbitrary code with the permissions of the user running mpg123.
  Workaround :

    There is no known workaround at this time.

The remote host seems to be running mpg123 (or one of its derivatives). This version of mpg123 is reported to be vulnerable to a remote buffer overflow that may permit an attacker to execute arbitrary code on the remote host.

ID	Name	Product	Family	Severity
36791	FreeBSD : mpg123 buffer overflow (15e0e963-02ed-11d9-a209-00061bc2ad93)	Nessus	FreeBSD Local Security Checks	high
15662	Debian DSA-564-1 : mpg123 - missing user input sanitising	Nessus	Debian Local Security Checks	high
14794	Mandrake Linux Security Advisory : mpg123 (MDKSA-2004:100)	Nessus	Mandriva Local Security Checks	high
14747	GLSA-200409-20 : mpg123: Buffer overflow vulnerability	Nessus	Gentoo Local Security Checks	high
2265	mpg123 Multiple Remote Overflows	Nessus Network Monitor	Web Clients	high

Detections

Analytics

CVE-2004-0805

critical

Tenable Plugins

high

high

high

high

high