Lucene search

K
cve[email protected]CVE-2011-1574
HistoryMay 09, 2011 - 10:55 p.m.

CVE-2011-1574

2011-05-0922:55:01
CWE-119
web.nvd.nist.gov
36
cve-2011-1574
buffer overflow
reads3m
libmodplug
nvd
security
vulnerability

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.312 Low

EPSS

Percentile

97.0%

Stack-based buffer overflow in the ReadS3M method in load_s3m.cpp in libmodplug before 0.8.8.2 allows remote attackers to execute arbitrary code via a crafted S3M file.

Affected configurations

NVD
Node
konstanty_bialkowskilibmodplugRange0.8.8.1
OR
konstanty_bialkowskilibmodplugMatch0.8
OR
konstanty_bialkowskilibmodplugMatch0.8.4
OR
konstanty_bialkowskilibmodplugMatch0.8.5
OR
konstanty_bialkowskilibmodplugMatch0.8.6
OR
konstanty_bialkowskilibmodplugMatch0.8.7
OR
konstanty_bialkowskilibmodplugMatch0.8.8

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.312 Low

EPSS

Percentile

97.0%