admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-07-09 16:05:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2004/CVE-2004-09xx/CVE-2004-0982.json
cad-safe-bot 60232de4e9 Auto-Update: 2025-04-03T02:02:27.113119+00:00
2025-04-03 02:06:18 +00:00

165 lines
4.5 KiB
JSON
Raw Blame History

{
"id": "CVE-2004-0982",
"sourceIdentifier": "cve@mitre.org",
"published": "2005-02-09T05:00:00.000",
"lastModified": "2025-04-03T01:03:51.193",
"vulnStatus": "Deferred",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a long string before the @ (at sign) in a URL."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"baseScore": 10.0,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE"
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": true,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mpg123:mpg123:0.59r:*:*:*:*:*:*:*",
"matchCriteriaId": "1F8EEF7E-C6BB-4669-81D2-68AABF8A7686"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mpg123:mpg123:pre0.59s:*:*:*:*:*:*:*",
"matchCriteriaId": "9AE94FDE-EC0C-48A1-A1E9-B4112CA4B0D0"
}
]
}
]
}
],
"references": [
{
"url": "http://marc.info/?l=bugtraq&m=109834486312407&w=2",
"source": "cve@mitre.org"
},
{
"url": "http://secunia.com/advisories/12908",
"source": "cve@mitre.org"
},
{
"url": "http://securitytracker.com/id?1011832",
"source": "cve@mitre.org"
},
{
"url": "http://www.barrossecurity.com/advisories/mpg123_getauthfromurl_bof_advisory.txt",
"source": "cve@mitre.org"
},
{
"url": "http://www.debian.org/security/2004/dsa-578",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.gentoo.org/security/en/glsa/glsa-200410-27.xml",
"source": "cve@mitre.org"
},
{
"url": "http://www.osvdb.org/11023",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/11468",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17574",
"source": "cve@mitre.org"
},
{
"url": "http://marc.info/?l=bugtraq&m=109834486312407&w=2",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://secunia.com/advisories/12908",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://securitytracker.com/id?1011832",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.barrossecurity.com/advisories/mpg123_getauthfromurl_bof_advisory.txt",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.debian.org/security/2004/dsa-578",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.gentoo.org/security/en/glsa/glsa-200410-27.xml",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.osvdb.org/11023",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/bid/11468",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17574",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink