Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if mp3info is not installed setuid or setgid in any reasonable context, then this issue might not be a vulnerability.
- http://packetstormsecurity.com/files/124955/Mp3info-Stack-Buffer-Overflow.html
- http://packetstormsecurity.com/files/125786/MP3Info-0.8.5-SEH-Buffer-Overflow.html
- http://www.exploit-db.com/exploits/32358
- https://github.com/mudongliang/LinuxFlaw
- https://github.com/oneoy/cve-