Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer signedness error in the store_id3_text function in the ID3v2 code in mpg123 before 1.7.2 allows remote attackers to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code via an ID3 tag with a negative encoding value. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
mpg123 'libmpg123/id3.cs'内存破坏漏洞
Vulnerability Description
mpg123是软件开发者Michael Hipp所研发的一款使用于Linux和Unix操作系统下的MPEG音频播放器和解码库。 mpg123的libmpg123/id3.c文件的store_id3_text()函数中存在符号错误。如果用户受骗打开了设置有特制ID3标签的媒体文件的话,就可以出发越界内存访问,导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A