Vulnerabilities > Claudio Matsuoka

DATE CVE VULNERABILITY TITLE RISK
2009-09-13 CVE-2007-6732 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Claudio Matsuoka Extended Module Player
Multiple buffer overflows in the dtt_load function in loaders/dtt_load.c Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via unspecified vectors related to an untrusted length value and the (1) pofs and (2) plen arrays.
network
low complexity
claudio-matsuoka CWE-119
critical
10.0
2009-09-13 CVE-2007-6731 Code Injection vulnerability in Claudio Matsuoka Extended Module Player
Extended Module Player (XMP) 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in (1) test_oxm and (2) decrunch_oxm functions in misc/oxm.c, leading to a buffer overflow.
network
low complexity
claudio-matsuoka CWE-94
critical
10.0