Winamp
by Nullsoft
CVEs (62)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2009-4356 | 0.00 | — | 0.05 | Dec 18, 2009 | Multiple integer overflows in the jpeg.w5s and png.w5s filters in Winamp before 5.57 allow remote attackers to execute arbitrary code via malformed (1) JPEG or (2) PNG data in an MP3 file. | |||
| CVE-2009-3997 | 0.00 | — | 0.06 | Dec 18, 2009 | Integer overflow in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp before 5.57 might allow remote attackers to execute arbitrary code via an Oktalyzer file that triggers a heap-based buffer overflow. | |||
| CVE-2009-0186 | 0.00 | — | 0.04 | Mar 5, 2009 | Integer overflow in libsndfile 1.0.18, as used in Winamp and other products, allows context-dependent attackers to execute arbitrary code via crafted description chunks in a CAF audio file, leading to a heap-based buffer overflow. | |||
| CVE-2008-3567 | 0.00 | — | 0.02 | Aug 10, 2008 | Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags. | |||
| CVE-2008-3441 | 0.00 | — | 0.03 | Aug 1, 2008 | Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning. | |||
| CVE-2007-4392 | 0.00 | — | 0.02 | Aug 17, 2007 | Winamp 5.35 allows remote attackers to cause a denial of service (program stack overflow and application crash) via an M3U file that recursively includes itself. | |||
| CVE-2007-1922 | 0.00 | — | 0.05 | Apr 10, 2007 | The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory… | |||
| CVE-2007-1921 | 0.00 | — | 0.05 | Apr 10, 2007 | LIBSNDFILE.DLL, as used by AOL Nullsoft Winamp 5.33 and possibly other products, allows remote attackers to execute arbitrary code via a crafted .MAT file that contains a value that is used as an offset, which triggers memory corruption. | |||
| CVE-2004-1896 | 0.00 | — | 0.05 | Dec 31, 2004 | Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 through 5.02 allows remote attackers to execute arbitrary code via a Fasttracker 2 (.xm) mod media file. | |||
| CVE-2004-2384 | 0.00 | — | 0.03 | Dec 31, 2004 | NullSoft Winamp 5.02 allows remote attackers to cause a denial of service (crash) by creating a file with a long filename, which causes the victim's player to crash when the file is opened from the command line. | |||
| CVE-2004-1396 | 0.00 | — | 0.03 | Dec 31, 2004 | Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file. | |||
| CVE-2003-1273 | 0.00 | — | 0.01 | Dec 31, 2003 | Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters. | |||
| CVE-2003-1274 | 0.00 | — | 0.01 | Dec 31, 2003 | Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux. | |||
| CVE-2003-1272 | 0.00 | — | 0.04 | Dec 31, 2003 | Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter. | |||
| CVE-2002-1524 | 0.00 | — | 0.04 | Apr 2, 2003 | Buffer overflow in XML parser in wsabi.dll of Winamp 3 (1.0.0.488) allows remote attackers to execute arbitrary code via a skin file (.wal) with a long include file tag. | |||
| CVE-2002-2392 | 0.00 | — | 0.03 | Dec 31, 2002 | Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code. | |||
| CVE-2002-2412 | 0.00 | — | 0.00 | Dec 31, 2002 | Winamp 2.80 stores authentication credentials in plaintext in the (1) [HTTP-AUTH] and (2) [winamp] sections in winamp.ini, which allows local users to gain access to other accounts. | |||
| CVE-2002-1177 | 0.00 | — | 0.03 | Dec 26, 2002 | Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote attackers to execute arbitrary code via an MP3 file containing a long (1) Artist or (2) Album ID3v2 tag. | |||
| CVE-2002-1176 | 0.00 | — | 0.02 | Dec 26, 2002 | Buffer overflow in Winamp 2.81 allows remote attackers to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file. | |||
| CVE-2002-0546 | 0.00 | — | 0.02 | Jul 3, 2002 | Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote attackers to execute script via an ID3v1 or ID3v2 tag in an MP3 file. |
- CVE-2009-4356Dec 18, 2009risk 0.00cvss —epss 0.05
Multiple integer overflows in the jpeg.w5s and png.w5s filters in Winamp before 5.57 allow remote attackers to execute arbitrary code via malformed (1) JPEG or (2) PNG data in an MP3 file.
- CVE-2009-3997Dec 18, 2009risk 0.00cvss —epss 0.06
Integer overflow in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp before 5.57 might allow remote attackers to execute arbitrary code via an Oktalyzer file that triggers a heap-based buffer overflow.
- CVE-2009-0186Mar 5, 2009risk 0.00cvss —epss 0.04
Integer overflow in libsndfile 1.0.18, as used in Winamp and other products, allows context-dependent attackers to execute arbitrary code via crafted description chunks in a CAF audio file, leading to a heap-based buffer overflow.
- CVE-2008-3567Aug 10, 2008risk 0.00cvss —epss 0.02
Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags.
- CVE-2008-3441Aug 1, 2008risk 0.00cvss —epss 0.03
Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
- CVE-2007-4392Aug 17, 2007risk 0.00cvss —epss 0.02
Winamp 5.35 allows remote attackers to cause a denial of service (program stack overflow and application crash) via an M3U file that recursively includes itself.
- CVE-2007-1922Apr 10, 2007risk 0.00cvss —epss 0.05
The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory…
- CVE-2007-1921Apr 10, 2007risk 0.00cvss —epss 0.05
LIBSNDFILE.DLL, as used by AOL Nullsoft Winamp 5.33 and possibly other products, allows remote attackers to execute arbitrary code via a crafted .MAT file that contains a value that is used as an offset, which triggers memory corruption.
- CVE-2004-1896Dec 31, 2004risk 0.00cvss —epss 0.05
Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 through 5.02 allows remote attackers to execute arbitrary code via a Fasttracker 2 (.xm) mod media file.
- CVE-2004-2384Dec 31, 2004risk 0.00cvss —epss 0.03
NullSoft Winamp 5.02 allows remote attackers to cause a denial of service (crash) by creating a file with a long filename, which causes the victim's player to crash when the file is opened from the command line.
- CVE-2004-1396Dec 31, 2004risk 0.00cvss —epss 0.03
Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.
- CVE-2003-1273Dec 31, 2003risk 0.00cvss —epss 0.01
Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters.
- CVE-2003-1274Dec 31, 2003risk 0.00cvss —epss 0.01
Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux.
- CVE-2003-1272Dec 31, 2003risk 0.00cvss —epss 0.04
Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter.
- CVE-2002-1524Apr 2, 2003risk 0.00cvss —epss 0.04
Buffer overflow in XML parser in wsabi.dll of Winamp 3 (1.0.0.488) allows remote attackers to execute arbitrary code via a skin file (.wal) with a long include file tag.
- CVE-2002-2392Dec 31, 2002risk 0.00cvss —epss 0.03
Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code.
- CVE-2002-2412Dec 31, 2002risk 0.00cvss —epss 0.00
Winamp 2.80 stores authentication credentials in plaintext in the (1) [HTTP-AUTH] and (2) [winamp] sections in winamp.ini, which allows local users to gain access to other accounts.
- CVE-2002-1177Dec 26, 2002risk 0.00cvss —epss 0.03
Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote attackers to execute arbitrary code via an MP3 file containing a long (1) Artist or (2) Album ID3v2 tag.
- CVE-2002-1176Dec 26, 2002risk 0.00cvss —epss 0.02
Buffer overflow in Winamp 2.81 allows remote attackers to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file.
- CVE-2002-0546Jul 3, 2002risk 0.00cvss —epss 0.02
Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote attackers to execute script via an ID3v1 or ID3v2 tag in an MP3 file.
Page 3 of 4