Page 10 of 62 results (0.008 seconds)

CVSS: 4.6EPSS: 23%CPEs: 33EXPL: 1

Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file. • https://www.exploit-db.com/exploits/418 http://secunia.com/advisories/12381 http://www.auscert.org.au/render.html?it=4338 http://www.frsirt.com/exploits/08252004.skinhead.php https://exchange.xforce.ibmcloud.com/vulnerabilities/17124 •

CVSS: 9.3EPSS: 2%CPEs: 1EXPL: 0

Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter. • http://archives.neohapsis.com/archives/bugtraq/2003-01/0025.html http://www.iss.net/security_center/static/10980.php http://www.securityfocus.com/bid/6515 http://www.securityfocus.com/bid/6516 https://exchange.xforce.ibmcloud.com/vulnerabilities/10981 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux. • http://archives.neohapsis.com/archives/bugtraq/2003-01/0025.html https://exchange.xforce.ibmcloud.com/vulnerabilities/10983 •

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters. • http://archives.neohapsis.com/archives/bugtraq/2003-01/0025.html http://www.securityfocus.com/bid/6517 https://exchange.xforce.ibmcloud.com/vulnerabilities/10982 •

CVSS: 7.5EPSS: 1%CPEs: 4EXPL: 1

The IN_MIDI.DLL plugin 3.01 and earlier, as used in Winamp 2.91, allows remote attackers to execute arbitrary code via a MIDI file with a large "Track data size" value. IN_MIDI.DLL plugin 3.01 y versiones anteriores, como es utilizado en Winamp 2.91, permite a atacantes remotos la ejecución de código arbitrario mediante un fichero MIDI con un valor "Track data size" largo. • https://www.exploit-db.com/exploits/23124 http://marc.info/?l=bugtraq&m=106305643432112&w=2 •