CVE-2011-1761

EPSS 17.0%

libmodplug - several

Published: 6/7/2012Modified: 4/28/2026

Description

Multiple stack-based buffer overflows in the (1) abc_new_macro and (2) abc_new_umacro functions in src/load_abc.cpp in libmodplug before 0.8.8.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ABC file. NOTE: some of these details are obtained from third party information.

Affected packages (2)

Debian/libmodplugfrom 0, < 1:0.8.8.4-1
Debian/libmodplugfrom 0, < 1:0.8.8.1-1+squeeze2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-1761