CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2CVE-2002-1524
https://notcve.org/view.php?id=CVE-2002-1524
Buffer overflow in XML parser in wsabi.dll of Winamp 3 (1.0.0.488) allows remote attackers to execute arbitrary code via a skin file (.wal) with a long include file tag. Desbordamiento de búfer en el procesador de XML en wsabi.dll de Winamp 3 (1.0.0.488) permite a atacantes remotos ejecutar código arbitrario mediante un fichero de piel (skin) .wal con una etiqueta de incluir fichero larga. • http://archives.neohapsis.com/archives/bugtraq/2002-09/0346.html http://www.iss.net/security_center/static/10228.php http://www.securityfocus.com/bid/5832 •
CVSS: 6.4EPSS: 0%CPEs: 13EXPL: 1CVE-2002-2392
https://notcve.org/view.php?id=CVE-2002-2392
Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code. • http://seclists.org/bugtraq/2002/Jul/0205.html http://www.iss.net/security_center/static/9630.php http://www.securityfocus.com/bid/5266 •
CVSS: 5.0EPSS: 2%CPEs: 17EXPL: 3CVE-2002-2195 – Nullsoft Winamp 2.80 - Automatic Update Check Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-2195
Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response. • https://www.exploit-db.com/exploits/21595 http://online.securityfocus.com/archive/1/280786 http://www.iss.net/security_center/static/9488.php http://www.securityfocus.com/bid/5170 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2002-2412
https://notcve.org/view.php?id=CVE-2002-2412
Winamp 2.80 stores authentication credentials in plaintext in the (1) [HTTP-AUTH] and (2) [winamp] sections in winamp.ini, which allows local users to gain access to other accounts. • http://online.securityfocus.com/archive/1/273257 http://www.iss.net/security_center/static/9114.php http://www.securityfocus.com/bid/4781 • CWE-255: Credentials Management Errors •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2002-1176
https://notcve.org/view.php?id=CVE-2002-1176
Buffer overflow in Winamp 2.81 allows remote attackers to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file. Desbordamiento de búfer en Winamp 2.81 permite a atacantes remotos ejecutar código arbitrario mediante una etiqueta ID3v2 de Artista larga en un fichero MP3. • http://marc.info/?l=bugtraq&m=104025874209567&w=2 •