Intrusion Prevention



It indicates a possible exploit of a buffer overflow vulnerability in DUMB.
This flaw is due to a buffer overflow error in the "it_read_envelope()" function when processing ".it" (Impulse Tracker) files with specially crafted envelopes, which could be exploited by attackers to execute arbitrary commands via a malicious file.

Affected Products

DUMB version 0.9.3 and prior.


The execution of arbitrary code on the system.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References