cbcvebase.
CVE-2013-1980
published 2014-02-11

CVE-2013-1980: Buffer overflow in the get_dsmp function in loaders/masi_load.c in libxmp before 4.1.0 allows remote attackers to execute arbitrary code via a crafted MASI…

PriorityP431medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
3.70%
88.4th percentile
Buffer overflow in the get_dsmp function in loaders/masi_load.c in libxmp before 4.1.0 allows remote attackers to execute arbitrary code via a crafted MASI file.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianxmp< xmp 3.4.0-3 (bookworm)xmp 3.4.0-3 (bookworm)
extended_module_player_projectextended_module_player<= 4.0.4
extended_module_player_projectextended_module_player
extended_module_player_projectextended_module_player
extended_module_player_projectextended_module_player
extended_module_player_projectextended_module_player

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.