PT-2018-14205 · Adplug Team+1 · Adplug+1

Leoaccount

Published

2018-10-01

Updated

2022-10-07

CVE-2018-17825

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions AdPlug version 2.3.1

Description An issue was discovered in the CEmuopl class in emuopl.cpp, where several double-free vulnerabilities exist due to a destructor's two OPLDestroy calls, each of which frees TL TABLE, SIN TABLE, AMS TABLE, and VIB TABLE.

Recommendations For AdPlug version 2.3.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALT-PU-2019-2765

ALT-PU-2019-2774

CVE-2018-17825

DLA-1534-1

Affected Products

Alt Linux

Adplug

PT-2018-14205 · Adplug Team+1 · Adplug+1

CVE-2018-17825

Weakness Enumeration

Related Identifiers

Affected Products

References · 14