Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/27047 | Exploit |
http://www.vupen.com/english/advisories/2008/0009 | Vendor Advisory |
http://aluigi.altervista.org/adv/xmpbof-adv.txt | Exploit |
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-09-13 15:30
Updated : 2009-09-13 21:00
NVD link : CVE-2007-6731
Mitre link : CVE-2007-6731
JSON object : View
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')
Products Affected
claudio_matsuoka
- extended_module_player