VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Aug 28, 2004· Updated Apr 16, 2026

CVE-2004-0820

CVE-2004-0820

Description

Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file.

Affected products

33
  • Nullsoft/Winamp33 versions
    cpe:2.3:a:nullsoft:winamp:2.10:*:*:*:*:*:*:*+ 32 more
    • cpe:2.3:a:nullsoft:winamp:2.10:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.24:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.50:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.5e:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.60:*:full:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.60:*:lite:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.61:*:full:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.62:*:standard:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.64:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.64:*:standard:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.65:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.70:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.70:*:full:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.71:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.72:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.73:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.73:*:full:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.74:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.75:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.76:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.77:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.78:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.79:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.80:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.81:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:2.91:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:5.01:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:5.02:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:5.03:*:*:*:*:*:*:*
    • cpe:2.3:a:nullsoft:winamp:5.04:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.