CVE-2007-6731

EPSS 6.8%

發布日:2009/9/13修改日:2026/4/28

也稱為:DEBIAN-CVE-2007-6731

描述

Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.

受影響套件(1)

Debian/xmpfrom 0, < 2.6.1-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6731