15 matches found
EUVD-2010-2973
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2010-2546
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple heap-based buffer overflows in loaders/loadit.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via 1 crafted...
SUSE-SU-2018:1471-1 Security update for libmikmod
This update for libmikmod fixes the following issues: - CVE-2010-2546: Multiple heap-based buffer overflows in loaders/loadit.c in libmikmod, might allow remote attackers to execute arbitrary code via 1 crafted samples or 2 crafted instrument definitions in an Impulse Tracker file, related to...
USN-995-1: libMikMod vulnerabilities
It was discovered that libMikMod incorrectly handled songs with different channel counts. If a user were tricked into opening a crafted song file, an attacker could cause a denial of service. CVE-2007-6720 It was discovered that libMikMod incorrectly handled certain malformed XM files. If a user...
Debian Security Advisory DSA 2081-1 (libmikmod)
The remote host is missing an update to libmikmod announced via advisory DSA 2081-1. OpenVAS Vulnerability Test $Id: deb20811.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2081-1 libmikmod Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Debian: Security Advisory (DSA-2081-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 2081-1] New libmikmod packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2081-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff August 01, 2010 http://www.debian.org/security/faq -...
CVE-2010-2546
Multiple heap-based buffer overflows in loaders/loadit.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via 1 crafted samples or 2 crafted instrument definitions in an Impulse Tracker file, related to panpts, pitpts, and ITProcessEnvelope. NOTE: some of thes...
Design/Logic Flaw
loaders/loadit.c in libmikmod, possibly 3.1.12, does not properly account for the larger size of nameenv relative to nametick and namenode, which allows remote attackers to trigger a buffer over-read and possibly have unspecified other impact via a crafted Impulse Tracker file, a related issue to...
CVE-2010-2546
Multiple heap-based buffer overflows in loaders/loadit.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via 1 crafted samples or 2 crafted instrument definitions in an Impulse Tracker file, related to panpts, pitpts, and ITProcessEnvelope. NOTE: some of thes...
CVE-2010-2546
Multiple heap-based buffer overflows in loaders/loadit.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via 1 crafted samples or 2 crafted instrument definitions in an Impulse Tracker file, related to panpts, pitpts, and ITProcessEnvelope. NOTE: some of thes...
CVE-2010-2546
The CVE-2010-2546 issue affects the libmikmod library, specifically multiple heap-based buffer overflows in loaders/load_it.c (likely in 3.1.12) that could allow remote attackers to execute arbitrary code via crafted Impulse Tracker files or instrument definitions, related to panpts, pitpts, and ...
CVE-2010-2971
CVE-2010-2971 concerns the libmikmod loader load_it.c, where a mismatch in handling name##env versus name##tick/name##node can cause a buffer over-read when processing Impulse Tracker files. The issue is a follow-up to CVE-2009-3995, with the CVE details noting a remote attacker could trigger the...
CVE-2010-2546
Multiple heap-based buffer overflows in loaders/loadit.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via 1 crafted samples or 2 crafted instrument definitions in an Impulse Tracker file, related to panpts, pitpts, and ITProcessEnvelope. NOTE: some of thes...
Debian DSA-2081-1 : libmikmod - buffer overflow
Tomas Hoger discovered that the upstream fix for CVE-2009-3995 was insufficient. This update provides a corrected package. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2081. The text...