CVE-2011-1761
CVE-2011-1761
Multiple stack-based buffer overflows in the (1) abc_new_macro and (2) abc_new_umacro functions in src/load_abc.cpp in libmodplug before 0.8.8.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ABC file. NOTE: some of these details are obtained from third party information.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/17222unverifiedexploitdbwww.exploit-db.com/exploits/17222unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.fedoraproject.org/pipermail/package-announce/2011-May/060520.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-08/msg00019.htmlhttp://secunia.com/advisories/44388http://secunia.com/advisories/44695http://secunia.com/advisories/44870http://secunia.com/advisories/45742http://secunia.com/advisories/48058http://ubuntu.com/usn/usn-1148-1http://www.debian.org/security/2012/dsa-2415http://www.exploit-db.com/exploits/17222http://www.openwall.com/lists/oss-security/2011/05/02/1http://www.openwall.com/lists/oss-security/2011/05/02/19