CVE-2009-1438
CVE-2009-1438
Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp) in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted (1) song comment or (2) song name, which triggers a heap-based buffer overflow, as exploited in the wild in August 2008.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.gentoo.org/show_bug.cgi?id=266913http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.htmlhttp://modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cpp?r1=1.1&%3Br2=1.2http://osvdb.org/53801https://bugzilla.redhat.com/show_bug.cgi?id=496834http://secunia.com/advisories/34797http://secunia.com/advisories/34930http://secunia.com/advisories/35026http://secunia.com/advisories/35685http://secunia.com/advisories/35736http://secunia.com/advisories/36158http://secunia.com/advisories/36183