Page 6 of 29 results (0.013 seconds)

CVSS: 9.3EPSS: 94%CPEs: 4EXPL: 3

Buffer overflow in Winamp 5.03a, 5.09 and 5.091, and other versions before 5.094, allows remote attackers to execute arbitrary code via an MP3 file with a long ID3v2 tag such as (1) ARTIST or (2) TITLE. Desbordamiento de búfer en Winamp 5.03a, 5.09 y 5.091 permite que atacantes remotos ejecuten código arbitrario mediante un fichero MP3 con un tag ID3v2 largo. • https://www.exploit-db.com/exploits/25989 http://secunia.com/advisories/16077 http://security.lss.hr/index.php?page=details&ID=LSS-2005-07-14 http://securitytracker.com/id?1014483 http://www.osvdb.org/17897 http://www.securityfocus.com/bid/14276 http://www.vupen.com/english/advisories/2005/1106 http://www.winamp.com/player/version_history.php • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.1EPSS: 0%CPEs: 9EXPL: 2

Stack-based buffer overflow in the in_cdda.dll plugin for Winamp 5.0 through 5.08c allows attackers to execute arbitrary code via a cda:// URL with a long (1) device name or (2) sound track number, as demonstrated with a .m3u or .pls playlist file. • https://www.exploit-db.com/exploits/25061 http://marc.info/?l=bugtraq&m=110684140108614&w=2 http://secunia.com/advisories/13781 http://www.nsfocus.com/english/homepage/research/0501.htm http://www.securityfocus.com/bid/12381 http://www.winamp.com/player/version_history.php https://exchange.xforce.ibmcloud.com/vulnerabilities/18840 •

CVSS: 10.0EPSS: 88%CPEs: 6EXPL: 2

Stack-based buffer overflow in IN_CDDA.dll in Winamp 5.05, and possibly other versions including 5.06, allows remote attackers to execute arbitrary code via a certain .m3u playlist file. • https://www.exploit-db.com/exploits/654 http://archives.neohapsis.com/archives/bugtraq/2004-11/0369.html http://marc.info/?l=bugtraq&m=110123330404482&w=2 http://marc.info/?l=bugtraq&m=110146036300803&w=2 http://marc.info/?l=ntbugtraq&m=110126352412395&w=2 http://marc.info/?l=ntbugtraq&m=110135574326217&w=2 http://secunia.com/advisories/13269 http://www.kb.cert.org/vuls/id/986504 http://www.security-assessment.com/Papers/Winamp_IN_CDDA_Buffer_Overflow.pdf http& •

CVSS: 4.6EPSS: 23%CPEs: 33EXPL: 1

Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file. • https://www.exploit-db.com/exploits/418 http://secunia.com/advisories/12381 http://www.auscert.org.au/render.html?it=4338 http://www.frsirt.com/exploits/08252004.skinhead.php https://exchange.xforce.ibmcloud.com/vulnerabilities/17124 •