← Back

Extended Module Player

extended_module_player

Vendor: Claudio Matsuoka • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-6732
1Claudio Matsuoka
1Extended Module Player
Apr 23, 2026
Sep 13, 2009
N/A· v4
N/A· v3
10.0 HIGH· v2
Multiple buffer overflows in the dtt_load function in loaders/dtt_load.c Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via unspecified vectors related to an untrusted len...Show more
Multiple buffer overflows in the dtt_load function in loaders/dtt_load.c Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via unspecified vectors related to an untrusted length value and the (1) pofs and (2) plen arrays.Show less
CVE-2007-6731
1Claudio Matsuoka
1Extended Module Player
Apr 23, 2026
Sep 13, 2009
N/A· v4
N/A· v3
10.0 HIGH· v2
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c,...Show more
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.Show less