CVE-2004-1284
EPSS 5.8%
Description
Buffer overflow in the find_next_file function in playlist.c for mpg123 0.59r allows remote attackers to execute arbitrary code via a crafted MP3 playlist.
How to fix CVE-2004-1284
To remediate CVE-2004-1284, upgrade the affected package to a fixed version below.
- Debian/mpg123—upgrade to 0.59r-20 or later
Is CVE-2004-1284 being exploited?
Moderate — EPSS is 5.8%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 0.59r-20