BID:22274

MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability

Info

MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability

Bugtraq ID:	22274
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2007-0578
Remote:	Yes
Local:	No
Published:	Jan 27 2007 12:00AM
Updated:	May 17 2007 08:48PM
Credit:	The vendor disclosed this vulnerability.
Vulnerable:	Pardus Linux 2007.1 mpg123 mpg123 0.59 s + Gentoo Linux mpg123 mpg123 0.59 r + Debian Linux 3.0 sparc + Debian Linux 3.0 s/390 + Debian Linux 3.0 ppc + Debian Linux 3.0 mipsel + Debian Linux 3.0 mips + Debian Linux 3.0 m68k + Debian Linux 3.0 ia-64 + Debian Linux 3.0 ia-32 + Debian Linux 3.0 hppa + Debian Linux 3.0 arm + Debian Linux 3.0 alpha + Debian Linux 3.0 + Gentoo Linux 1.4 + Gentoo Linux + MandrakeSoft Corporate Server 2.1 x86_64 + MandrakeSoft Corporate Server 2.1 + Mandriva Linux Mandrake 10.1 x86_64 + Mandriva Linux Mandrake 10.1 + Mandriva Linux Mandrake 10.0 AMD64 + Mandriva Linux Mandrake 10.0 + Mandriva Linux Mandrake 9.1 ppc + Mandriva Linux Mandrake 9.1 + Mandriva Linux Mandrake 9.0 mpg123 mpg123 0.59 q mpg123 mpg123 0.59 p mpg123 mpg123 0.59 o mpg123 mpg123 0.59 n mpg123 mpg123 0.59 m mpg123 mpg123 pre0.59s mpg123 mpg123 0.63 + Gentoo Linux mpg123 mpg123 0.62 + Gentoo Linux mpg123 mpg123 0.60 + Gentoo Linux Mandriva Linux Mandrake 2006.0 x86_64 Mandriva Linux Mandrake 2006.0 Mandriva Linux Mandrake 2007.0 x86_64 Mandriva Linux Mandrake 2007.0 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0

Not Vulnerable:	mpg123 mpg123 0.64 + Gentoo Linux

Discussion

MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability

The 'mpg123' media player is prone to a denial-of-service vulnerability when connecting to malicious servers.

An attacker can exploit this issue to cause the affected application to crash, effectively denying service to legitimate users.

Exploit / POC

MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability

To exploit this issue, an attacker must entice a victim into connecting to a malicious website.

Solution / Fix

MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability

Solution:
The vendor released an update to address this issue. Please see the references for more information.

mpg123 mpg123 0.63

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.62

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.60

Mandriva mpg123-0.60-2.1mdv2007.0.i586.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download

Mandriva mpg123-0.60-2.1mdv2007.0.x86_64.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download

mpg123 mpg123 pre0.59s

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.59 p

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.59 o

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.59 q

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.59 n

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.59 m

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.59 r

Mandriva mpg123-0.59r-22.4.C30mdk.i586.rpm
Corporate 3.0:
http://www.mandriva.com/en/download

Mandriva mpg123-0.59r-22.4.C30mdk.x86_64.rpm
Corporate 3.0:
http://www.mandriva.com/en/download

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

mpg123 mpg123 0.59 s

mpg123 mpg123-0.64.tar.bz2
http://www.mpg123.de/download/mpg123-0.64.tar.bz2

References

MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability

References:

mpg123 Home Page (mpg123)
mpg123 News Archive (mpg123)