CVE-2011-2911
EPSS 2.1%Published: 6/7/2012Modified: 4/28/2026
Description
Integer overflow in the CSoundFile::ReadWav function in src/load_wav.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted WAV file, which triggers a heap-based buffer overflow.
Affected packages (1)
- Debian/libmodplugfrom 0, < 1:0.8.8.4-1