Stack memory corruption vulnerability in libmodplug before 0.8.8.4 via crafted AMS file

Stack memory corruption vulnerability in libmodplug before 0.8.8.4 via crafted AMS file

CVE-2011-2913 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Off-by-one error in the CSoundFile::ReadAMS function in src/load_ams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service (stack memory corruption) and possibly execute arbitrary code via a crafted AMS file with a large number of samples.

Learn more about our Cis Benchmark Audit For Ibm I.