Vulnerabilities > CVE-2010-0766 - Numeric Errors vulnerability in Luxology Modo 401

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

luxology

CWE-189

critical

NVD

Published: 2010-03-03

Updated: 2018-10-10

Summary

Integer overflow in the Swap4 function in valet4.dll in Luxology Modo 401 allows user-assisted remote attackers to execute arbitrary code via a .LXO file containing a CHNL subchunk associated with an invalid length.

Vulnerable Configurations

Part	Description	Count
Application	Luxology Luxology Modo 401	1

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

Packetstorm

data source	https://packetstormsecurity.com/files/download/86852/CORE-2009-0913.txt
id	PACKETSTORM:86852
last seen	2016-12-05
published	2010-03-03
reporter	Core Security Technologies
source	https://packetstormsecurity.com/files/86852/Core-Security-Technologies-Advisory-2009.0913.html
title	Core Security Technologies Advisory 2009.0913

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Packetstorm

References