Page 8 of 62 results (0.005 seconds)

CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 1

Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file. • https://www.exploit-db.com/exploits/26245 http://forums.winamp.com/showthread.php?threadid=238648 http://securityreason.com/securityalert/476 http://securitytracker.com/id?1015675 http://www.nsfocus.com/english/homepage/research/0601.htm http://www.securityfocus.com/archive/1/425888/100/0/threaded http://www.securityfocus.com/bid/16785 https://exchange.xforce.ibmcloud.com/vulnerabilities/24740 •

CVSS: 9.3EPSS: 10%CPEs: 18EXPL: 1

Multiple buffer overflows in NullSoft Winamp 5.13 and earlier allow remote attackers to execute arbitrary code via (1) an m3u file containing a long URL ending in .wma, (2) a pls file containing a File1 field with a long URL ending in .wma, or (3) an m3u file with a long filename, variants of CVE-2005-3188 and CVE-2006-0476. • http://forums.winamp.com/showthread.php?s=&threadid=238648 http://securityreason.com/securityalert/444 http://securityreason.com/securityalert/492 http://securitytracker.com/id?1015621 http://www.securityfocus.com/archive/1/424903/100/0/threaded http://www.securityfocus.com/bid/16623 http://www.vupen.com/english/advisories/2006/0613 https://exchange.xforce.ibmcloud.com/vulnerabilities/24739 https://exchange.xforce.ibmcloud.com/vulnerabilities/24740 https://exchange.xforce.ibmcloud.com/vulnerabilities •

CVSS: 7.6EPSS: 77%CPEs: 1EXPL: 4

Buffer overflow in Nullsoft Winamp 5.12 allows remote attackers to execute arbitrary code via a playlist (pls) file with a long file name (File1 field). • https://www.exploit-db.com/exploits/16531 https://www.exploit-db.com/exploits/1458 https://www.exploit-db.com/exploits/3422 https://www.exploit-db.com/exploits/1460 http://secunia.com/advisories/18649 http://securityreason.com/securityalert/386 http://securityreason.com/securityalert/398 http://securitytracker.com/id?1015552 http://www.heise.de/newsticker/meldung/68981 http://www.kb.cert.org/vuls/id/604745 http://www.osvdb.org/22789 http://www.securityfocus.com/arc •

CVSS: 7.6EPSS: 19%CPEs: 1EXPL: 1

Buffer overflow in Nullsoft Winamp 5.094 allows remote attackers to execute arbitrary code via (1) an m3u file containing a long line ending in .wma or (2) a pls file containing a long File1 value ending in .wma, a different vulnerability than CVE-2006-0476. • http://securityreason.com/securityalert/397 http://securitytracker.com/id?1015565 http://securitytracker.com/id?1015621 http://www.idefense.com/intelligence/vulnerabilities/display.php?id=378 http://www.osvdb.org/22975 http://www.securityfocus.com/bid/16462 https://exchange.xforce.ibmcloud.com/vulnerabilities/24417 •

CVSS: 9.3EPSS: 94%CPEs: 4EXPL: 3

Buffer overflow in Winamp 5.03a, 5.09 and 5.091, and other versions before 5.094, allows remote attackers to execute arbitrary code via an MP3 file with a long ID3v2 tag such as (1) ARTIST or (2) TITLE. Desbordamiento de búfer en Winamp 5.03a, 5.09 y 5.091 permite que atacantes remotos ejecuten código arbitrario mediante un fichero MP3 con un tag ID3v2 largo. • https://www.exploit-db.com/exploits/25989 http://secunia.com/advisories/16077 http://security.lss.hr/index.php?page=details&ID=LSS-2005-07-14 http://securitytracker.com/id?1014483 http://www.osvdb.org/17897 http://www.securityfocus.com/bid/14276 http://www.vupen.com/english/advisories/2005/1106 http://www.winamp.com/player/version_history.php • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •