Unrated severityNVD Advisory· Published May 31, 2002· Updated Jun 16, 2026

CVE-2002-0284

Description

Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.

Affected products

Nullsoft/Winamp2 versions
cpe:2.3:a:nullsoft:winamp:2.77:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:nullsoft:winamp:2.77:*:*:*:*:*:*:*
- cpe:2.3:a:nullsoft:winamp:2.78:*:*:*:*:*:*:*
Winamp/Winampllm-fuzzy
Range: 2.77, 2.78

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000