CVE-2011-2913

EPSS 2.5%

Published: 6/7/2012Modified: 4/28/2026

Description

Off-by-one error in the CSoundFile::ReadAMS function in src/load_ams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service (stack memory corruption) and possibly execute arbitrary code via a crafted AMS file with a large number of samples.

Affected packages (1)

Debian/libmodplugfrom 0, < 1:0.8.8.4-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-2913