CVE-2006-4192

Name of the Vulnerable Software and Affected Versions: OpenMPT versions 1.17.02.43 and earlier libmodplug versions 0.8 and earlier

Description: The issue allows user-assisted remote attackers to execute arbitrary code via long strings in ITP files used by the CSoundFile::ReadITProject function in soundlib/Load it.cpp and crafted modules used by the CSoundFile::ReadSample function in soundlib/Sndfile.cpp. This can be demonstrated by crafted AMF files. The vulnerability may lead to disruption of confidentiality, integrity, and availability of protected information and can be exploited remotely.

Recommendations: For OpenMPT versions 1.17.02.43 and earlier, consider disabling the CSoundFile::ReadITProject and CSoundFile::ReadSample functions until a patch is available. For libmodplug versions 0.8 and earlier, restrict access to the soundlib/Load it.cpp and soundlib/Sndfile.cpp modules to minimize the risk of exploitation. Avoid using crafted ITP files and modules in the affected products until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.