CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-11552

mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a denial of service (memory corruption seen in a crash in the mad_decoder_run function in decoder.c in libmad) via a crafted MP3 file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.075

EPSS Ranking 91.4%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

http://seclists.org/fulldisclosure/2017/Jul/94
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870406
https://www.exploit-db.com/exploits/42409/
http://seclists.org/fulldisclosure/2017/Jul/94
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870406
https://www.exploit-db.com/exploits/42409/

Products affected by CVE-2017-11552

Underbit » Mad Libmad » Version: 0.15.1b

cpe:2.3:a:underbit:mad_libmad:0.15.1b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-11552

Products

Pricing

Contact Us