CVE-2003-0865
mpg123 - heap overflow
EPSS 19.5%
Description
Heap-based buffer overflow in readstring of httpget.c for mpg123 0.59r and 0.59s allows remote attackers to execute arbitrary code via a long request.
How to fix CVE-2003-0865
To remediate CVE-2003-0865, upgrade the affected package to a fixed version below.
- Debian/mpg123—upgrade to 0.59r-15 or later
- Debian/mpg123—upgrade to 0.59r-13woody2 or later
Is CVE-2003-0865 being exploited?
Moderate — EPSS is 19.5%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 0.59r-15
- from 0, < 0.59r-13woody2