Vulnerability Details : CVE-2018-10017
soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service (out-of-bounds read) via an IT or MO3 file with many nested pattern loops.
Vulnerability category: Denial of service
Products affected by CVE-2018-10017
- cpe:2.3:a:openmpt:libopenmpt:*:*:*:*:*:*:*:*
- cpe:2.3:a:openmpt:openmpt:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-10017
0.57%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 75 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-10017
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST | |
6.5
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
2.8
|
3.6
|
NIST |
CWE ids for CVE-2018-10017
-
The product reads data past the end, or before the beginning, of the intended buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-10017
-
https://openmpt.org/openmpt-1-27-07-00-released
OpenMPT 1.27.07.00 released | OpenMPT - Open ModPlug TrackerRelease Notes;Vendor Advisory
-
https://github.com/OpenMPT/openmpt/commit/7ebf02af2e90f03e0dbd0e18b8b3164f372fb97c
[Fix] Possible out-of-bounds read when computing length of some IT fi… · OpenMPT/openmpt@7ebf02a · GitHubPatch;Vendor Advisory
-
https://lib.openmpt.org/libopenmpt/2018/04/08/security-updates-0.3.8-0.2-beta31-0.2.7561-beta20.5-p8-0.2.7386-beta20.3-p11/
libopenmpt and openmpt123 - libopenmpt security updates 0.3.8, 0.2-beta31, 0.2.7561-beta20.5-p8, 0.2.7386-beta20.3-p11Patch;Vendor Advisory
Jump to