CVE-2004-1396
https://notcve.org/view.php?id=CVE-2004-1396
Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file. • http://forums.winamp.com/showthread.php?s=&threadid=202007 http://marc.info/?l=bugtraq&m=110297310503541&w=2 http://marc.info/?l=full-disclosure&m=110303988101973&w=2 http://securitytracker.com/alerts/2004/Dec/1012525.html http://www.kb.cert.org/vuls/id/372968 http://www.securityfocus.com/bid/11909 https://exchange.xforce.ibmcloud.com/vulnerabilities/18466 https://exchange.xforce.ibmcloud.com/vulnerabilities/18467 •
CVE-2004-1373 – SHOUTcast DNAS/Linux 1.9.4 - Format String Remote Overflow
https://notcve.org/view.php?id=CVE-2004-1373
Format string vulnerability in SHOUTcast 1.9.4 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via format string specifiers in a content URL, as demonstrated in the filename portion of a .mp3 file. • https://www.exploit-db.com/exploits/712 https://www.exploit-db.com/exploits/830 https://www.exploit-db.com/exploits/16751 http://marc.info/?l=bugtraq&m=110382975516003&w=2 http://marc.info/?l=bugtraq&m=110886444014745&w=2 http://securitytracker.com/id?1012675 http://www.gentoo.org/security/en/glsa/glsa-200501-04.xml http://www.securityfocus.com/bid/12096 https://exchange.xforce.ibmcloud.com/vulnerabilities/18669 •
CVE-2004-1119 – Winamp 5.06 - 'IN_CDDA.dll' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2004-1119
Stack-based buffer overflow in IN_CDDA.dll in Winamp 5.05, and possibly other versions including 5.06, allows remote attackers to execute arbitrary code via a certain .m3u playlist file. • https://www.exploit-db.com/exploits/654 http://archives.neohapsis.com/archives/bugtraq/2004-11/0369.html http://marc.info/?l=bugtraq&m=110123330404482&w=2 http://marc.info/?l=bugtraq&m=110146036300803&w=2 http://marc.info/?l=ntbugtraq&m=110126352412395&w=2 http://marc.info/?l=ntbugtraq&m=110135574326217&w=2 http://secunia.com/advisories/13269 http://www.kb.cert.org/vuls/id/986504 http://www.security-assessment.com/Papers/Winamp_IN_CDDA_Buffer_Overflow.pdf http& •
CVE-2004-0820 – Winamp 5.04 - '.wsz' Skin File Remote Code Execution
https://notcve.org/view.php?id=CVE-2004-0820
Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file. • https://www.exploit-db.com/exploits/418 http://secunia.com/advisories/12381 http://www.auscert.org.au/render.html?it=4338 http://www.frsirt.com/exploits/08252004.skinhead.php https://exchange.xforce.ibmcloud.com/vulnerabilities/17124 •
CVE-2003-1272
https://notcve.org/view.php?id=CVE-2003-1272
Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter. • http://archives.neohapsis.com/archives/bugtraq/2003-01/0025.html http://www.iss.net/security_center/static/10980.php http://www.securityfocus.com/bid/6515 http://www.securityfocus.com/bid/6516 https://exchange.xforce.ibmcloud.com/vulnerabilities/10981 •