Extended Module Player (xmp) 2.5.1 'oxm.c' And 'dtt_load.c' Multiple Local Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/27047/info Extended Module Player xmp is prone to multiple local buffer-overflow vulnerabilities because it fails to perform adequate boundary checks before copying user-supplied input into an insufficiently sized buffer...

Buffer overflow

Extended Module Player XMP 2.5.1 and earlier allow remote attackers to execute arbitrary code via an OXM file with a negative value, which bypasses a check in 1 testoxm and 2 decrunchoxm functions in misc/oxm.c, leading to a buffer overflow...

Extended Module Player (xmp) 'oxm.c'和'dtt_load.c'缓冲区溢出漏洞

Extended Module Player xmp是一款命令行播放程序。 Extended Module Player xmp存在多个缓冲区溢出问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 问题一是testoxm / decrunchoxm处理OXM文件格式存在缓冲区溢出。 问题二是dttload处理pofs和plen数组存在缓冲区溢出。 Extended Module Player xmp 2.5.1 厂商解决方案 ----------- 目前没有详细解决方案提供： http://xmp.sourceforge.net/ 可参考如下测试程序：...