VYPR

Vendor CVEs

Nullsoft

All CVEs

77 total · sorted by risk
  • CVE-2009-0186Mar 5, 2009
    risk 0.00cvss epss 0.04

    Integer overflow in libsndfile 1.0.18, as used in Winamp and other products, allows context-dependent attackers to execute arbitrary code via crafted description chunks in a CAF audio file, leading to a heap-based buffer overflow.

  • CVE-2008-3567Aug 10, 2008
    risk 0.00cvss epss 0.02

    Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags.

  • CVE-2008-3441Aug 1, 2008
    risk 0.00cvss epss 0.03

    Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.

  • CVE-2007-4392Aug 17, 2007
    risk 0.00cvss epss 0.02

    Winamp 5.35 allows remote attackers to cause a denial of service (program stack overflow and application crash) via an M3U file that recursively includes itself.

  • CVE-2007-1921Apr 10, 2007
    risk 0.00cvss epss 0.05

    LIBSNDFILE.DLL, as used by AOL Nullsoft Winamp 5.33 and possibly other products, allows remote attackers to execute arbitrary code via a crafted .MAT file that contains a value that is used as an offset, which triggers memory corruption.

  • CVE-2007-1922Apr 10, 2007
    risk 0.00cvss epss 0.05

    The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory…

  • CVE-2006-3535Jul 12, 2006
    risk 0.00cvss epss 0.04

    Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.7 allows remote attackers to read arbitrary files via unspecified vectors that are a "slight variation" of CVE-2006-3534.

  • CVE-2006-3534Jul 12, 2006
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.6 filters directory traversal sequences before decoding, which allows remote attackers to read arbitrary files via encoded dot dot (%2E%2E) sequences in an HTTP GET request for a file path containing…

  • CVE-2006-3007Jun 13, 2006
    risk 0.00cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in SHOUTcast 1.9.5 allow remote attackers to inject arbitrary HTML or web script via the DJ fields (1) Description, (2) URL, (3) Genre, (4) AIM, and (5) ICQ.

  • CVE-2004-1896Dec 31, 2004
    risk 0.00cvss epss 0.05

    Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 through 5.02 allows remote attackers to execute arbitrary code via a Fasttracker 2 (.xm) mod media file.

  • CVE-2004-2384Dec 31, 2004
    risk 0.00cvss epss 0.03

    NullSoft Winamp 5.02 allows remote attackers to cause a denial of service (crash) by creating a file with a long filename, which causes the victim's player to crash when the file is opened from the command line.

  • CVE-2004-1396Dec 31, 2004
    risk 0.00cvss epss 0.03

    Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.

  • CVE-2003-1274Dec 31, 2003
    risk 0.00cvss epss 0.01

    Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux.

  • CVE-2003-1272Dec 31, 2003
    risk 0.00cvss epss 0.04

    Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter.

  • CVE-2003-1273Dec 31, 2003
    risk 0.00cvss epss 0.01

    Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters.

  • CVE-2002-1470Apr 22, 2003
    risk 0.00cvss epss 0.00

    SHOUTcast 1.8.9 and earlier allows local users to obtain the cleartext administrative password via a GET request to port 8001, which causes the password to be logged in the world-readable sc_serv.log file.

  • CVE-2002-1524Apr 2, 2003
    risk 0.00cvss epss 0.04

    Buffer overflow in XML parser in wsabi.dll of Winamp 3 (1.0.0.488) allows remote attackers to execute arbitrary code via a skin file (.wal) with a long include file tag.

  • CVE-2002-2392Dec 31, 2002
    risk 0.00cvss epss 0.03

    Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code.

  • CVE-2002-2412Dec 31, 2002
    risk 0.00cvss epss 0.00

    Winamp 2.80 stores authentication credentials in plaintext in the (1) [HTTP-AUTH] and (2) [winamp] sections in winamp.ini, which allows local users to gain access to other accounts.

  • CVE-2002-1176Dec 26, 2002
    risk 0.00cvss epss 0.02

    Buffer overflow in Winamp 2.81 allows remote attackers to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file.

  • CVE-2002-1177Dec 26, 2002
    risk 0.00cvss epss 0.03

    Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote attackers to execute arbitrary code via an MP3 file containing a long (1) Artist or (2) Album ID3v2 tag.

  • CVE-2002-0547Jul 3, 2002
    risk 0.00cvss epss 0.03

    Buffer overflow in the mini-browser for Winamp 2.79 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the title field of an ID3v2 tag.

  • CVE-2002-0546Jul 3, 2002
    risk 0.00cvss epss 0.02

    Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote attackers to execute script via an ID3v1 or ID3v2 tag in an MP3 file.

  • CVE-2002-0284May 31, 2002
    risk 0.00cvss epss 0.01

    Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.

  • CVE-2002-0199May 16, 2002
    risk 0.00cvss epss 0.03

    Buffer overflow in admin.cgi for Nullsoft Shoutcast Server 1.8.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an argument with a large number of backslashes.

  • CVE-2001-1304Aug 3, 2001
    risk 0.00cvss epss 0.02

    Buffer overflow in SHOUTcast Server 1.8.2 allows remote attackers to cause a denial of service (crash) via several HTTP requests with a long (1) user-agent or (2) host HTTP header.

  • CVE-1999-1561Aug 20, 1999
    risk 0.00cvss epss 0.00

    Nullsoft SHOUTcast server stores the administrative password in plaintext in a configuration file (sc_serv.conf), which could allow a local user to gain administrative privileges on the server.

Page 2 of 2