QwikSec

Security Database

CVE

CWE

Training

CVE-2013-4233

Published: Sep 16, 2013

Modified: Sep 17, 2024

PUBLISHED

Description

Integer overflow in the abc_set_parts function in load_abc.cpp in libmodplug 0.8.8.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted P header in an ABC file, which triggers a heap-based buffer overflow.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_DEBIAN

http://blog.scrt.ch/2013/07/24/vlc-abc-parsing-seems-to-be-a-ctf-challenge/

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20130809 Re: CVE Request - LibModPlug <=0.8.8.4 multiple heap overflow

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.