CVSS: 6.1EPSS: 0%CPEs: 72EXPL: 0CVE-2008-3567
https://notcve.org/view.php?id=CVE-2008-3567
10 Aug 2008 — Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags. Una vulnerabilidad de tipo cross-zone scripting en la función NowPlaying en NullSoft Winamp anterior a versión 5.541, permite a los atacantes remotos conducir ataques de tipo cross-site scripting (XSS) por medio de un archivo MP3 con JavaScript en etiquetas id3. • http://blog.watchfire.com/wfblog/2008/09/winamp-nowplayi.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.1EPSS: 1%CPEs: 1EXPL: 0CVE-2008-3441
https://notcve.org/view.php?id=CVE-2008-3441
01 Aug 2008 — Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning. Nullsoft Winamp anterior a 5.24 no verifica adecuadamente la autenticidad de las actualizaciones, lo cual permite a atacantes de tipo 'hombre en el medio' (man-in-the-middle) ejecutar código de su elección a través de la actualización de un Caballo de Troya, como se demuestra por e... • http://archives.neohapsis.com/archives/bugtraq/2008-07/0250.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.3EPSS: 6%CPEs: 2EXPL: 0CVE-2007-4619 – FLAC Integer overflows
https://notcve.org/view.php?id=CVE-2007-4619
12 Oct 2007 — Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow. Múltiples desbordamientos de entero en Free Lossless Audio Codec (FLAC) libFLAC versiones anteriores a 1.2.1, como se usan Winamp versiones anteriores a 5.5 y otros productos, permiten a atacantes remotos... • http://bugzilla.redhat.com/show_bug.cgi?id=331991 • CWE-189: Numeric Errors CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 9%CPEs: 30EXPL: 1CVE-2006-3228 – Winamp 5.21 - '.Midi' File Header Handling Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2006-3228
26 Jun 2006 — Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote attackers to execute arbitrary code via a crafted .mid (MIDI) file. Desbordamiento de búfer en in_midi.dll para WinAmp v2.90 hasta v5.23, incluyendo v5.21, permite a atacantes remotos ejecutar código de su elección a través de un fichero manipulado .mi (MIDI). • https://www.exploit-db.com/exploits/1935 •
CVSS: 9.8EPSS: 7%CPEs: 4EXPL: 3CVE-2005-2310 – NullSoft Winamp 5.0 - Malformed ID3v2 Tag Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-2310
19 Jul 2005 — Buffer overflow in Winamp 5.03a, 5.09 and 5.091, and other versions before 5.094, allows remote attackers to execute arbitrary code via an MP3 file with a long ID3v2 tag such as (1) ARTIST or (2) TITLE. Desbordamiento de búfer en Winamp 5.03a, 5.09 y 5.091 permite que atacantes remotos ejecuten código arbitrario mediante un fichero MP3 con un tag ID3v2 largo. • https://www.exploit-db.com/exploits/25989 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 4%CPEs: 33EXPL: 1CVE-2004-0820 – Winamp 5.04 - '.wsz' Skin File Remote Code Execution
https://notcve.org/view.php?id=CVE-2004-0820
28 Aug 2004 — Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file. • https://www.exploit-db.com/exploits/418 •
CVSS: 9.8EPSS: 5%CPEs: 17EXPL: 3CVE-2002-2195 – Nullsoft Winamp 2.80 - Automatic Update Check Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-2195
31 Dec 2002 — Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response. • https://www.exploit-db.com/exploits/21595 •
CVSS: 9.8EPSS: 1%CPEs: 13EXPL: 1CVE-2002-2392
https://notcve.org/view.php?id=CVE-2002-2392
31 Dec 2002 — Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code. • http://seclists.org/bugtraq/2002/Jul/0205.html •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 1CVE-2002-0546
https://notcve.org/view.php?id=CVE-2002-0546
03 Jul 2002 — Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote attackers to execute script via an ID3v1 or ID3v2 tag in an MP3 file. Vulnerabilidad de secuencias de comandos en sitios cruzados en la zona de navegación de Winamp 2.78 y 2.79 permite a atacantes remotos la ejecución de código mediante etiquetas ID3v1 o ID3v2 en un fichero MP3. • http://archives.neohapsis.com/archives/bugtraq/2002-04/0026.html •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2002-0547
https://notcve.org/view.php?id=CVE-2002-0547
11 Jun 2002 — Buffer overflow in the mini-browser for Winamp 2.79 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the title field of an ID3v2 tag. Desbordamiento de búfer en la zona de navegación de Winamp 2.79 y versiones anteriores, permite a atacantes remotos causar una Denegación de Servicios (caída) y posiblemente la ejecución arbitraria de código mediante una cadena larga de caracteres en el campo title de una etiqueta ID3v2. • http://archives.neohapsis.com/archives/bugtraq/2002-04/0373.html •