CVE-2011-1574

libmodplug <0.8.8.2 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in the ReadS3M method in load_s3m.cpp in libmodplug before 0.8.8.2 allows remote attackers to execute arbitrary code via a crafted S3M file.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17252

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by jduck · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/vlc_modplug_s3m.rb

View Code ZIP pw:eip

References (15)

[Vendor Advisory] https://www.ubuntu.com/usn/USN-1148-1/

[Exploit, Patch] http://openwall.com/lists/oss-security/2011/04/11/13

[Third Party Advisory] http://www.gentoo.org/security/en/glsa/glsa-201203-16.xml

[Patch] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622091

[Exploit] https://www.sec-consult.com/files/20110407-0_libmodplug_stackoverflow.txt

[Third Party Advisory] http://secunia.com/advisories/44870

[Exploit, Patch] http://openwall.com/lists/oss-security/2011/04/11/6

[Exploit, Patch] https://bugzilla.redhat.com/show_bug.cgi?id=695420

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1025480

[Product] http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms%3Ba=commit%3Bh=aecef259828a89bb00c2e6f78e89de7363b2237b

[Third Party Advisory] http://secunia.com/advisories/48434

[Third Party Advisory] http://www.debian.org/security/2011/dsa-2226

[Third Party Advisory] http://securityreason.com/securityalert/8243

[Vendor Advisory] https://rhn.redhat.com/errata/RHSA-2011-0477.html

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2011:085

Scores

EPSS 0.6632

EPSS Percentile 98.5%

Details

CWE

CWE-119

Status published

Products (7)

konstanty_bialkowski/libmodplug 0.8

konstanty_bialkowski/libmodplug 0.8.4

konstanty_bialkowski/libmodplug 0.8.5

konstanty_bialkowski/libmodplug 0.8.6

konstanty_bialkowski/libmodplug 0.8.7

konstanty_bialkowski/libmodplug 0.8.8

konstanty_bialkowski/libmodplug < 0.8.8.1

Published May 09, 2011

Tracked Since Feb 18, 2026