Memory Corruption and Remote Code Execution Vulnerability in libmodplug

CVE-2011-2915 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Off-by-one error in the CSoundFile::ReadAMS2 function in src/load_ams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a crafted AMS file with a large number of instruments.

Learn more about our Cis Benchmark Audit For Ibm I.