Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2013-4234

Published: 16/09/2013 Updated: 31/12/2016
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Libmodplug

Vulnerability Summary

Multiple heap-based buffer overflows in the (1) abc_MIDI_drum and (2) abc_MIDI_gchord functions in load_abc.cpp in libmodplug 0.8.8.4 and previous versions allow remote malicious users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via a crafted ABC.

Vulnerable Product Search on Vulmon Subscribe to Product

konstanty_bialkowski libmodplug 0.8.8.1

konstanty_bialkowski libmodplug 0.8.8

konstanty_bialkowski libmodplug 0.8.7

konstanty_bialkowski libmodplug

konstanty_bialkowski libmodplug 0.8.4

konstanty_bialkowski libmodplug 0.8

konstanty_bialkowski libmodplug 0.8.8.3

konstanty_bialkowski libmodplug 0.8.8.2

konstanty_bialkowski libmodplug 0.8.6

konstanty_bialkowski libmodplug 0.8.5

debian debian_linux 6.0

debian debian_linux 7.0

Vendor Advisories

Debian CVElist Bug Report Logs: libmodplug: CVE-2013-4233 CVE-2013-4234
Debian Bug report logs - #719462 libmodplug: CVE-2013-4233 CVE-2013-4234 Package: libmodplug; Maintainer for libmodplug is Stephen Kitt <skitt@debianorg>; Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Mon, 12 Aug 2013 06:33:02 UTC Severity: grave Tags: security Fixed in versions libmodplug/1:0884-4, lib ...

References

CWE-119http://secunia.com/advisories/54695http://blog.scrt.ch/2013/07/24/vlc-abc-parsing-seems-to-be-a-ctf-challenge/http://secunia.com/advisories/54388http://www.debian.org/security/2013/dsa-2751http://www.openwall.com/lists/oss-security/2013/08/10/3http://www.securityfocus.com/bid/61714https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719462https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook