SuSE 11 Security Update : libmikmod (SAT Patch Number 2354)

High Nessus Plugin ID 50934


The remote SuSE 11 host is missing one or more security updates.


Specially crafted 'Impulse Tracker' and 'Ultratracker' files could cause a heap based buffer overflow in libmikmod. Attackers could exploit that to crash or potentially execute code in applications linking against libmikmod. (CVE-2009-3995 / CVE-2009-3996)


Apply SAT patch number 2354.

See Also

Plugin Details

Severity: High

ID: 50934

File Name: suse_11_libmikmod-100422.nasl

Version: $Revision: 1.4 $

Type: local

Agent: unix

Published: 2010/12/02

Modified: 2013/10/25

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:libmikmod, p-cpe:/a:novell:suse_linux:11:libmikmod-32bit, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2010/04/22

Exploitable With

Core Impact

Reference Information

CVE: CVE-2009-3995, CVE-2009-3996

CWE: 119