#VU33956 Input validation error in libmodplug - CVE-2011-2915


| Updated: 2020-08-04

Vulnerability identifier: #VU33956

Vulnerability risk: Medium

CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2011-2915

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libmodplug
Client/Desktop applications / Multimedia software

Vendor: ModPlug

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Off-by-one error in the CSoundFile::ReadAMS2 function in src/load_ams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a crafted AMS file with a large number of instruments.

Mitigation
Install update from vendor's website.

Vulnerable software versions

libmodplug: 0.8 - 0.8.8.2

External links
https://jira.atheme.org/browse/AUDPLUG-394
https://lists.fedoraproject.org/pipermail/package-announce/2011-August/063786.html
https://lists.fedoraproject.org/pipermail/package-announce/2011-September/066044.html
https://lists.opensuse.org/opensuse-security-announce/2011-08/msg00019.html
https://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commitdiff;h=16d7a78efe14d345a6c5b241f88422ad0ee483ea
https://rhn.redhat.com/errata/RHSA-2011-1264.html
https://secunia.com/advisories/45131
https://secunia.com/advisories/45658
https://secunia.com/advisories/45742
https://secunia.com/advisories/45901
https://secunia.com/advisories/46032
https://secunia.com/advisories/46043
https://secunia.com/advisories/46793
https://secunia.com/advisories/48058
https://secunia.com/advisories/48434
https://secunia.com/advisories/48439
https://sourceforge.net/projects/modplug-xmms/files/libmodplug/0.8.8.4/
https://ubuntu.com/usn/usn-1255-1
https://www.debian.org/security/2012/dsa-2415
https://www.gentoo.org/security/en/glsa/glsa-201203-14.xml
https://www.gentoo.org/security/en/glsa/glsa-201203-16.xml
https://www.openwall.com/lists/oss-security/2011/08/10/4
https://www.openwall.com/lists/oss-security/2011/08/12/4
https://www.osvdb.org/74210
https://www.securityfocus.com/bid/48979
https://exchange.xforce.ibmcloud.com/vulnerabilities/68987

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Gentoo update for ModPlug
Gentoo update for Audacious Plugins
Input validation error in libmodplug (Alpine package)