CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2003-1274
https://notcve.org/view.php?id=CVE-2003-1274
Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux. • http://archives.neohapsis.com/archives/bugtraq/2003-01/0025.html https://exchange.xforce.ibmcloud.com/vulnerabilities/10983 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2003-1273
https://notcve.org/view.php?id=CVE-2003-1273
Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters. • http://archives.neohapsis.com/archives/bugtraq/2003-01/0025.html http://www.securityfocus.com/bid/6517 https://exchange.xforce.ibmcloud.com/vulnerabilities/10982 •
CVSS: 7.5EPSS: 1%CPEs: 4EXPL: 1CVE-2003-0765 – NullSoft Winamp 2.81/2.91/3.0/3.1 - MIDI Plugin 'IN_MIDI.dll' Track Data Size Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2003-0765
The IN_MIDI.DLL plugin 3.01 and earlier, as used in Winamp 2.91, allows remote attackers to execute arbitrary code via a MIDI file with a large "Track data size" value. IN_MIDI.DLL plugin 3.01 y versiones anteriores, como es utilizado en Winamp 2.91, permite a atacantes remotos la ejecución de código arbitrario mediante un fichero MIDI con un valor "Track data size" largo. • https://www.exploit-db.com/exploits/23124 http://marc.info/?l=bugtraq&m=106305643432112&w=2 •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2CVE-2002-1524
https://notcve.org/view.php?id=CVE-2002-1524
Buffer overflow in XML parser in wsabi.dll of Winamp 3 (1.0.0.488) allows remote attackers to execute arbitrary code via a skin file (.wal) with a long include file tag. Desbordamiento de búfer en el procesador de XML en wsabi.dll de Winamp 3 (1.0.0.488) permite a atacantes remotos ejecutar código arbitrario mediante un fichero de piel (skin) .wal con una etiqueta de incluir fichero larga. • http://archives.neohapsis.com/archives/bugtraq/2002-09/0346.html http://www.iss.net/security_center/static/10228.php http://www.securityfocus.com/bid/5832 •
CVSS: 6.4EPSS: 0%CPEs: 13EXPL: 1CVE-2002-2392
https://notcve.org/view.php?id=CVE-2002-2392
Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code. • http://seclists.org/bugtraq/2002/Jul/0205.html http://www.iss.net/security_center/static/9630.php http://www.securityfocus.com/bid/5266 •