CVE-2011-10021
HIGHMagix Musik Maker 16 - Buffer Overflow
Title source: llmDescription
Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy() operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler (SEH). By crafting a malicious .mmm file, an attacker can trigger the overflow when the file is opened, potentially leading to arbitrary code execution. This vulnerability was remediated in version 17.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Alexey Sintsov · rubylocalwindows
https://www.exploit-db.com/exploits/17329
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/17313
metasploit
WORKING POC
GOOD
by acidgen · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/magix_musikmaker_16_mmm.rb
References (7)
Scores
CVSS v4
8.4
EPSS
0.0815
EPSS Percentile
92.2%
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-121
Status
published
Products (1)
MAGIX Software GmbH/Magix Musik Maker
< 16
Published
Aug 20, 2025
Tracked Since
Feb 18, 2026