← back
CVE-2007-6732

CVE-2007-6732

EPSS 5.6%
Multiple buffer overflows in the dtt_load function in loaders/dtt_load.c Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via unspecified vectors related to an untrusted length value and the (1) pofs and (2) plen arrays.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://aluigi.altervista.org/adv/xmpbof-adv.txthttp://www.securityfocus.com/bid/27047http://www.vupen.com/english/advisories/2008/0009