CVE-2010-2971

Severity Score

9.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

loaders/load_it.c in libmikmod, possibly 3.1.12, does not properly account for the larger size of name##env relative to name##tick and name##node, which allows remote attackers to trigger a buffer over-read and possibly have unspecified other impact via a crafted Impulse Tracker file, a related issue to CVE-2010-2546. NOTE: this issue exists because of an incomplete fix for CVE-2009-3995.

oaders/load_it.c en libmikmod, posiblemente v3.1.12, no considera adecuadamente los tamaños grandes de name##env en relación con name##tick y name##node, lo cual permite a atacantes remotos disparar una sobre-lectura de búfer y posiblemente tener otros impactos no especificados a través de ficheros Impulse Tracker manipulados, relacionado con el comportamiento de CVE-2010-2546. OTA: esta vulnerabilidad existe debido a una solución incompleta de CVE-2009-3995.

*Credits: N/A

CVSS Scores

NISTv2 9.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2010-08-04 CVE Reserved
2010-08-04 CVE Published
2023-03-07 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CAPEC

References (6)

URL	Tag	Source
http://secunia.com/advisories/48244	Third Party Advisory
http://sourceforge.net/tracker/?func=detail&aid=3033086&group_id=40531&atid=428227	X_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=614643	X_refsource_confirm

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://security.gentoo.org/glsa/glsa-201203-10.xml	2018-01-05
http://www.debian.org/security/2010/dsa-2081	2018-01-05
http://www.mandriva.com/security/advisories?name=MDVSA-2010:151	2018-01-05

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Raphael Assenat Search vendor "Raphael Assenat"		Libmikmod Search vendor "Raphael Assenat" for product "Libmikmod"				3.1.12 Search vendor "Raphael Assenat" for product "Libmikmod" and version "3.1.12"		-		Affected