Your submission was sent successfully! Close

CVE-2007-0654

Published: 21 March 2007

Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack-based buffer overflow.

Priority

Unknown

Status

Package Release Status
xmms
Launchpad, Ubuntu, Debian
dapper
Released (1.2.10+cvs20050809-4ubuntu5.1)
edgy
Released (1.2.10+cvs20060429-1ubuntu2.1)
feisty
Released (1.2.10+20061201-1ubuntu3)
upstream Needs triage