Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nullsoft winamp 2.91 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0765
The IN_MIDI.DLL plugin 3.01 and previous versions, as used in Winamp 2.91, allows remote malicious users to execute arbitrary code via a MIDI file with a large "Track data size" value.
Nullsoft Winamp 3.0
Nullsoft Winamp 3.1
Nullsoft Winamp 2.81
Nullsoft Winamp 2.91
1 EDB exploit
NA
CVE-2004-1896
Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 up to and including 5.02 allows remote malicious users to execute arbitrary code via a Fasttracker 2 (.xm) mod media file.
Nullsoft Winamp 3.1
Nullsoft Winamp 5.0.1
Nullsoft Winamp 2.91
Nullsoft Winamp 3.0
Nullsoft Winamp 5.0.2
NA
CVE-2004-0820
Winamp prior to 5.0.4 allows remote malicious users to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file.
Nullsoft Winamp 2.4
Nullsoft Winamp 2.50
Nullsoft Winamp 2.64
Nullsoft Winamp 2.65
Nullsoft Winamp 2.70
Nullsoft Winamp 2.75
Nullsoft Winamp 2.76
Nullsoft Winamp 3.0
Nullsoft Winamp 3.1
Nullsoft Winamp 2.60
Nullsoft Winamp 2.61
Nullsoft Winamp 2.72
Nullsoft Winamp 2.73
Nullsoft Winamp 2.79
Nullsoft Winamp 2.80
Nullsoft Winamp 5.03
Nullsoft Winamp 5.04
Nullsoft Winamp 2.5e
Nullsoft Winamp 2.71
Nullsoft Winamp 2.77
Nullsoft Winamp 2.78
Nullsoft Winamp 5.01
1 EDB exploit
NA
CVE-2006-3228
Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote malicious users to execute arbitrary code via a crafted .mid (MIDI) file.
Nullsoft Winamp 2.91
Nullsoft Winamp 2.95
Nullsoft Winamp 5.02
Nullsoft Winamp 5.03
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.09
Nullsoft Winamp 5.0
Nullsoft Winamp 2.90
Nullsoft Winamp 5.0.2
Nullsoft Winamp 5.01
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.11
Nullsoft Winamp 5.12
Nullsoft Winamp 5.13
Nullsoft Winamp 5.2
Nullsoft Winamp 5.0.1
Nullsoft Winamp 5.05
Nullsoft Winamp 5.06
Nullsoft Winamp 5.07
Nullsoft Winamp 5.094
Nullsoft Winamp 5.1
1 EDB exploit
NA
CVE-2011-4857
Heap-based buffer overflow in the in_mod.dll plugin in Winamp prior to 5.623 allows remote malicious users to execute arbitrary code via crafted song message data in an Impulse Tracker (IT) file. NOTE: some of these details are obtained from third party information.
Nullsoft Winamp 5.05
Nullsoft Winamp 5.04
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.56
Nullsoft Winamp 2.92
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.11
Nullsoft Winamp 5.2
Nullsoft Winamp 5.32
Nullsoft Winamp 5.22
Nullsoft Winamp 5.07
Nullsoft Winamp 5.06
Nullsoft Winamp 1.006
Nullsoft Winamp 1.90
Nullsoft Winamp 5.58
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 0.92
NA
CVE-2011-3834
Multiple integer overflows in the in_avi.dll plugin in Winamp prior to 5.623 allow remote malicious users to execute arbitrary code via an AVI file with a crafted value for (1) the number of streams or (2) the size of the RIFF INFO chunk, leading to a heap-based buffer overflow.
Nullsoft Winamp 5.06
Nullsoft Winamp 5.05
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.531
Nullsoft Winamp 5.56
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.11
Nullsoft Winamp 5.2
Nullsoft Winamp 5.33
Nullsoft Winamp 5.32
Nullsoft Winamp 5.07
Nullsoft Winamp 1.006
Nullsoft Winamp 1.90
Nullsoft Winamp 5.58
Nullsoft Winamp 2.95
Nullsoft Winamp 5.55
Nullsoft Winamp 5.551
Nullsoft Winamp 5.5
NA
CVE-2012-3890
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.51
Nullsoft Winamp 5.31
Nullsoft Winamp 5.3
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.093
Nullsoft Winamp 5.091
Nullsoft Winamp 2.9
Nullsoft Winamp 5.59
Nullsoft Winamp 5.581
Nullsoft Winamp 5.54
Nullsoft Winamp 5.35
Nullsoft Winamp 5.34
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.572
NA
CVE-2012-3889
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.61
Nullsoft Winamp 5.59
Nullsoft Winamp 5.54
Nullsoft Winamp 5.36
Nullsoft Winamp 5.35
Nullsoft Winamp 5.22
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.0
Nullsoft Winamp 2.91
Nullsoft Winamp 2.0
Nullsoft Winamp 0.20a
Nullsoft Winamp 0.92
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.52
Nullsoft Winamp 5.51
Nullsoft Winamp 5.32
Nullsoft Winamp 5.31
NA
CVE-2010-4370
Multiple integer overflows in the in_midi plugin in Winamp prior to 5.6 allow remote malicious users to execute arbitrary code via a crafted MIDI file that triggers a buffer overflow.
Nullsoft Winamp 5.06
Nullsoft Winamp 5.05
Nullsoft Winamp 1.90
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.56
Nullsoft Winamp 2.92
Nullsoft Winamp 5.52
Nullsoft Winamp 5.111
Nullsoft Winamp 5.2
Nullsoft Winamp 5.13
Nullsoft Winamp 5.32
Nullsoft Winamp 5.22
Nullsoft Winamp 5.04
Nullsoft Winamp 5.09
Nullsoft Winamp 0.92
Nullsoft Winamp 5.03
Nullsoft Winamp 5.552
Nullsoft Winamp 2.0
Nullsoft Winamp 2.9
NA
CVE-2010-4372
Integer overflow in the in_nsv plugin in Winamp prior to 5.6 allows remote malicious users to have an unspecified impact via vectors related to improper allocation of memory for NSV metadata, a different vulnerability than CVE-2010-2586.
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.02
Nullsoft Winamp 5.01
Nullsoft Winamp 2.10
Nullsoft Winamp 5.55
Nullsoft Winamp 2.6
Nullsoft Winamp 5.541
Nullsoft Winamp 5.34
Nullsoft Winamp 5.35
Nullsoft Winamp 5.094
Nullsoft Winamp 5.31
Nullsoft Winamp 5.23
Nullsoft Winamp
Nullsoft Winamp 5.04
Nullsoft Winamp 5.09
Nullsoft Winamp 0.92
Nullsoft Winamp 5.03
Nullsoft Winamp 5.552
Nullsoft Winamp 2.0
Nullsoft Winamp 2.9
Nullsoft Winamp 5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »