EIP-2026-102892

PRE-CVE

Libmodplug - 's3m' Buffer Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102892. PoCs published by dummy.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in libmodplug (CVE-2008-102890) by crafting a malicious .s3m file with an invalid 'annolen' field, leading to arbitrary code execution or denial-of-service. The PoC generates a file with a controlled overflow in the song comments section.

Description

Libmodplug - 's3m' Buffer Overflow

Exploits (1)

exploitdb WORKING POC

by dummy · clocallinux

https://www.exploit-db.com/exploits/10313

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in libmodplug (CVE-2008-102890) by crafting a malicious .s3m file with an invalid 'annolen' field, leading to arbitrary code execution or denial-of-service. The PoC generates a file with a controlled overflow in the song comments section.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: libmodplug < 0.8.6

No auth needed

Prerequisites: Ability to deliver a malicious .s3m file to the target system · Target application using libmodplug to parse the file

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026