CVE-2011-10021

HIGH

Magix Musik Maker 16 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2011-10021. PoCs published by Alexey Sintsov, Metasploit, acidgen, including Metasploit module exploits/windows/fileformat/magix_musikmaker_16_mmm.

AI-analyzed exploit summary This is a functional Metasploit exploit for a stack buffer overflow in Magix Musik Maker 16, leveraging ROP chains to bypass DEP and ASLR, achieving arbitrary code execution via SEH overwrite.

Description

Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy() operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler (SEH). By crafting a malicious .mmm file, an attacker can trigger the overflow when the file is opened, potentially leading to arbitrary code execution. This vulnerability was remediated in version 17.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Alexey Sintsov · rubylocalwindows
https://www.exploit-db.com/exploits/17329

This is a functional Metasploit exploit for a stack buffer overflow in Magix Musik Maker 16, leveraging ROP chains to bypass DEP and ASLR, achieving arbitrary code execution via SEH overwrite.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Magix Musik Maker 16
No auth needed
Prerequisites: Victim must open a malicious .MMM file
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/17313

This Metasploit module exploits a stack buffer overflow in Magix Musik Maker 16 via a crafted .mmm file, bypassing DEP and ASLR using ROP chains and an egghunter to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Magix Musik Maker 16
No auth needed
Prerequisites: Victim must open the malicious .mmm file
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC GOOD
by acidgen · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/magix_musikmaker_16_mmm.rb

This Metasploit module exploits a stack buffer overflow in Magix Musik Maker 16 via a crafted .mmm file, bypassing DEP and ASLR using ROP chains and an egghunter to achieve remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Magix Musik Maker 16
No auth needed
Prerequisites: Victim must open a malicious .mmm file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/17329
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/17313

Scores

CVSS v4 8.4
EPSS 0.0032
EPSS Percentile 23.7%
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-121
Status published
Products (1)
MAGIX Software GmbH/Magix Musik Maker < 16
Published Aug 20, 2025
Tracked Since Feb 18, 2026