Vulnerability Details CVE-2004-1292
Buffer overflow in the parse_emelody function in parse_emelody.c for ringtonetools 2.22 allows remote attackers to execute arbitrary code via a crafted eMelody file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.066
EPSS Ranking 90.8%
CVSS Severity
CVSS v2 Score 10.0
References
- http://tigger.uic.edu/~jlongs2/holes/ringtonetools.txt
- http://www.gentoo.org/security/en/glsa/glsa-200503-18.xml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18557
- http://tigger.uic.edu/~jlongs2/holes/ringtonetools.txt
- http://www.gentoo.org/security/en/glsa/glsa-200503-18.xml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18557
Products affected by CVE-2004-1292
-
cpe:2.3:a:michael_kohn:ringtonetools:2.22