CVE-2007-0578

Published Jan 30, 2007

Last updated 14 years ago

Overview

Description: The http_open function in httpget.c in mpg123 before 0.64 allows remote attackers to cause a denial of service (infinite loop) by closing the HTTP connection early.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.59m:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A46F3026-9958-460C-AB14-593C216E12D9"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.59n:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D782ECC-6223-4055-A812-36625B50517D"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.59o:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74027FB8-195D-432C-A4AB-83829C81FFBB"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.59p:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2330232E-59BF-4885-84DC-879BAB98BA81"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.59q:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "124B56BC-EF2F-42D8-81B5-AD4E854CA9BC"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.59r:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F8EEF7E-C6BB-4669-81D2-68AABF8A7686"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.59s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1144518D-4069-4903-9B45-56C0E97BC992"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.62:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F101A71C-6467-4008-9CCB-E2B9F69513FE"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:0.63:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E115F3B-12CC-427F-A4C6-32C7395A5F7E"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:pre0.59s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9AE94FDE-EC0C-48A1-A1E9-B4112CA4B0D0"
          },
          {
            "criteria": "cpe:2.3:a:mpg123:mpg123:pre0.59s_r11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9765C6AD-E1F0-421C-B7B1-C09AD83A3DB7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References