Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nullsoft winamp 2.7x vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0490
Buffer overflow in WINAMP 2.6x and 2.7x allows malicious users to execute arbitrary code via a long string in an AIP file.
Nullsoft Winamp 2.6x
Nullsoft Winamp 2.7x
1 EDB exploit
NA
CVE-2008-3567
Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp prior to 5.541 allows remote malicious users to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags.
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 5.09
Nullsoft Winamp
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
Nullsoft Winamp 2.61
Nullsoft Winamp 5.112
Nullsoft Winamp 2.75
Nullsoft Winamp 5.02
Nullsoft Winamp 5.01
NA
CVE-2009-1831
The Nullsoft Modern Skins Support module (gen_ff.dll) in Nullsoft Winamp prior to 5.552 allows remote malicious users to execute arbitrary code via a crafted MAKI file, which triggers an incorrect sign extension, an integer overflow, and a stack-based buffer overflow.
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 5.09
Nullsoft Winamp 2.70
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
Nullsoft Winamp 2.60
Nullsoft Winamp 2.61
Nullsoft Winamp 5.112
Nullsoft Winamp 2.75
Nullsoft Winamp 5.02
5 EDB exploits
NA
CVE-2009-0263
Multiple buffer overflows in Winamp 5.541 and previous versions allow remote malicious users to cause a denial of service and possibly execute arbitrary code via (1) a large Common Chunk (COMM) header value in an AIFF file and (2) a large invalid value in an MP3 file.
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 5.09
Nullsoft Winamp 2.70
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
Nullsoft Winamp 2.60
Nullsoft Winamp 2.61
Nullsoft Winamp 5.112
Nullsoft Winamp 2.75
1 EDB exploit
NA
CVE-2009-4356
Multiple integer overflows in the jpeg.w5s and png.w5s filters in Winamp prior to 5.57 allow remote malicious users to execute arbitrary code via malformed (1) JPEG or (2) PNG data in an MP3 file.
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.552
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp 2.70
Nullsoft Winamp 2.9
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
Nullsoft Winamp 2.60
NA
CVE-2009-3995
Multiple heap-based buffer overflows in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp prior to 5.57, and libmikmod 3.1.12, might allow remote malicious users to execute arbitrary code via (1) crafted samples or (2) crafted instrument definitions in an Impulse Tracker file...
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.552
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp 2.70
Nullsoft Winamp 2.9
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
Raphael Assenat Libmikmod 3.1.12
NA
CVE-2009-3996
Heap-based buffer overflow in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp prior to 5.57, and libmikmod 3.1.12, might allow remote malicious users to execute arbitrary code via an Ultratracker file.
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.552
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp 2.70
Nullsoft Winamp 2.9
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
Raphael Assenat Libmikmod 3.1.12
NA
CVE-2009-3997
Integer overflow in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp prior to 5.57 might allow remote malicious users to execute arbitrary code via an Oktalyzer file that triggers a heap-based buffer overflow.
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.552
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp 2.70
Nullsoft Winamp 2.9
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
Nullsoft Winamp 2.60
NA
CVE-2010-1523
Multiple heap-based buffer overflows in vp6.w5s (aka the VP6 codec) in Winamp prior to 5.59 Beta build 3033 might allow remote malicious users to execute arbitrary code via a crafted VP6 (1) video file or (2) video stream.
Nullsoft Winamp 2.6x
Nullsoft Winamp 5.57
Nullsoft Winamp 5.093
Nullsoft Winamp 2.64
Nullsoft Winamp 5.552
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 2.62
Nullsoft Winamp 5.111
Nullsoft Winamp 2.24
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp 2.70
Nullsoft Winamp 2.9
Nullsoft Winamp 2.50
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 2.72
Nullsoft Winamp 5.23
Nullsoft Winamp 2.73
Nullsoft Winamp 2.90
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started