mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-25 12:44:05 +02:00
0xMarcio
844 B
844 B
CVE-2013-4233
Description
Integer overflow in the abc_set_parts function in load_abc.cpp in libmodplug 0.8.8.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted P header in an ABC file, which triggers a heap-based buffer overflow.
POC
Reference
- http://blog.scrt.ch/2013/07/24/vlc-abc-parsing-seems-to-be-a-ctf-challenge/
- http://blog.scrt.ch/2013/07/24/vlc-abc-parsing-seems-to-be-a-ctf-challenge/
Github
No PoCs found on GitHub currently.