QwikSec

Security Database

CVE

CWE

Training

CVE-2007-6720

Published: Jan 20, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

libmikmod 3.1.9 through 3.2.0, as used by MikMod, SDL-mixer, and possibly other products, relies on the channel count of the last loaded song, rather than the currently playing song, for certain playback calculations, which allows user-assisted attackers to cause a denial of service (application crash) by loading multiple songs (aka MOD files) with different numbers of channels.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422021

x_refsource_CONFIRM

FEDORA-2009-9095

vendor-advisory

x_refsource_FEDORA

SUSE-SR:2009:006

vendor-advisory

x_refsource_SUSE

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

x_refsource_CONFIRM

FEDORA-2009-9112

vendor-advisory

x_refsource_FEDORA

https://bugzilla.redhat.com/show_bug.cgi?id=479829

x_refsource_CONFIRM

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=461519

x_refsource_MISC

[oss-security] 20090113 CVE Request -- libmikmod

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.