Vulnerability in Konstanty_bialkowski Libmodplug
CVE-2013-4233
Integer overflow in the abc_set_parts function in load_abc.cpp in libmodplug 0.8.8.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted P header in an ABC file, which triggers…
EPSS: 0.038 (88.4th percentile) — read the EPSS interpretation.
Affected products
- Konstanty_bialkowski Libmodplug — versions 0.8, 0.8.4, 0.8.5
- Debian Debian_linux — versions 6.0, 7.0
- N/a — versions n/a
Weakness classification (CWE)
References
- DSA-2751 (vendor-advisory, x_refsource_DEBIAN)
- secalert@redhat.com (Exploit, x_refsource_MISC)
- 54388 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- [oss-security] 20130809 Re: CVE Request - LibModPlug <=0.8.8.4 multiple heap overflow (mailing-list, x_refsource_MLIST, Exploit)
- 54695 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)