CVE-2009-3995

Summary (CVE-2009-3995) : The issue arises from multiple heap-based buffer overflows in MikMod (libmikmod, loaders/load_it.c, possibly version 3.1.12) used by Impulse Tracker-compatible formats. Exploitation via specially crafted Impulse Tracker samples or instrument definitions could allow a rem...

CVE-2009-3996

CVE-2009-3996 is a heap-based buffer overflow in the MikMod library used by libmikmod (and implicated by Winamp’s Module Decoder Plug‑in in older builds). Specifically, specially crafted Ultratracker/Impulse Tracker music files could overflow buffers, allowing arbitrary code execution or crashes ...

CVE-2010-2546

The CVE-2010-2546 issue affects the libmikmod library, specifically multiple heap-based buffer overflows in loaders/load_it.c (likely in 3.1.12) that could allow remote attackers to execute arbitrary code via crafted Impulse Tracker files or instrument definitions, related to panpts, pitpts, and ...

CVE-2010-2971

CVE-2010-2971 concerns the libmikmod loader load_it.c, where a mismatch in handling name##env versus name##tick/name##node can cause a buffer over-read when processing Impulse Tracker files. The issue is a follow-up to CVE-2009-3995, with the CVE details noting a remote attacker could trigger the...