CVE-2003-0577

EPSS 5.2%

Published: 8/18/2003Modified: 4/28/2026

Description

mpg123 0.59r allows remote attackers to cause a denial of service and possibly execute arbitrary code via an MP3 file with a zero bitrate, which creates a negative frame size.

Affected packages (2)

Debian/mp3gainfrom 0, < 1.5.2-r2-6
Debian/mpg123from 0, < 0.59r-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0577