Lucene search

K

RedhatCVELIST:CVE-2010-2546

HistoryAug 04, 2010 - 9:00 p.m.

CVE-2010-2546

2010-08-0421:00:00

redhat

www.cve.org

7.6 High

AI Score

Confidence

Low

0.219 Low

EPSS

Percentile

96.5%

Multiple heap-based buffer overflows in loaders/load_it.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via (1) crafted samples or (2) crafted instrument definitions in an Impulse Tracker file, related to panpts, pitpts, and IT_ProcessEnvelope. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2009-3995.

References

secunia.com/advisories/40799

secunia.com/advisories/48244

security.gentoo.org/glsa/glsa-201203-10.xml

sourceforge.net/tracker/?func=detail&aid=3033086&group_id=40531&atid=428227

www.debian.org/security/2010/dsa-2081

www.mandriva.com/security/advisories?name=MDVSA-2010:151

www.securityfocus.com/bid/41917

www.vupen.com/english/advisories/2010/1957

bugzilla.redhat.com/show_bug.cgi?id=614643

7.6 High

AI Score

Confidence

Low

0.219 Low

EPSS

Percentile

96.5%

Related for CVELIST:CVE-2010-2546

prion3 debian2 debiancve3 ubuntucve4 nvd3 securityvulns6 cve3 openvas25 cvelist2 osv1 nessus18 veracode2 ubuntu1 gentoo1 fedora2 redhat1 seebug1 centos1 oraclelinux1 altlinux1