Vulnerability Details CVE-2003-1091
Integer overflow in MP3Broadcaster for Apple QuickTime/Darwin Streaming Server 4.1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed ID3 tags in MP3 files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.371
EPSS Ranking 97.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2003-05/0245.html
- http://securitytracker.com/id?1006822
- http://www.kb.cert.org/vuls/id/148564
- http://www.securityfocus.com/bid/7660
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12054
- http://archives.neohapsis.com/archives/bugtraq/2003-05/0245.html
- http://securitytracker.com/id?1006822
- http://www.kb.cert.org/vuls/id/148564
- http://www.securityfocus.com/bid/7660
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12054
Products affected by CVE-2003-1091
-
cpe:2.3:a:apple:quicktime_broadcaster:4.1.3