Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nullsoft winamp 5.0 vulnerabilities and exploits
(subscribe to this query)
515
VMScore
CVE-2004-1150
Stack-based buffer overflow in the in_cdda.dll plugin for Winamp 5.0 up to and including 5.08c allows malicious users to execute arbitrary code via a cda:// URL with a long (1) device name or (2) sound track number, as demonstrated with a .m3u or .pls playlist file.
Nullsoft Winamp 5.06
Nullsoft Winamp 5.07
Nullsoft Winamp 5.0
Nullsoft Winamp 5.01
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.04
Nullsoft Winamp 5.05
Nullsoft Winamp 5.02
Nullsoft Winamp 5.03
1 EDB exploit
828
VMScore
CVE-2006-0708
Multiple buffer overflows in NullSoft Winamp 5.13 and previous versions allow remote malicious users to execute arbitrary code via (1) an m3u file containing a long URL ending in .wma, (2) a pls file containing a File1 field with a long URL ending in .wma, or (3) an m3u file with...
Nullsoft Winamp 5.01
Nullsoft Winamp 5.02
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.13
Nullsoft Winamp 5.03
Nullsoft Winamp 5.04
Nullsoft Winamp 5.09
Nullsoft Winamp 5.091
Nullsoft Winamp 5.05
Nullsoft Winamp 5.06
Nullsoft Winamp 5.093
Nullsoft Winamp 5.094
Nullsoft Winamp 5.0
Nullsoft Winamp 5.07
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.11
Nullsoft Winamp 5.12
935
VMScore
CVE-2006-3228
Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote malicious users to execute arbitrary code via a crafted .mid (MIDI) file.
Nullsoft Winamp 2.91
Nullsoft Winamp 2.95
Nullsoft Winamp 5.02
Nullsoft Winamp 5.03
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.09
Nullsoft Winamp 5.0
Nullsoft Winamp 2.90
Nullsoft Winamp 5.0.2
Nullsoft Winamp 5.01
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.11
Nullsoft Winamp 5.12
Nullsoft Winamp 5.13
Nullsoft Winamp 5.2
Nullsoft Winamp 5.0.1
Nullsoft Winamp 5.05
Nullsoft Winamp 5.06
Nullsoft Winamp 5.07
Nullsoft Winamp 5.094
Nullsoft Winamp 5.1
1 EDB exploit
935
VMScore
CVE-2005-2310
Buffer overflow in Winamp 5.03a, 5.09 and 5.091, and other versions prior to 5.094, allows remote malicious users to execute arbitrary code via an MP3 file with a long ID3v2 tag such as (1) ARTIST or (2) TITLE.
Nullsoft Winamp 5.03a
Nullsoft Winamp 5.09
Nullsoft Winamp 5.091
Nullsoft Winamp
1 EDB exploit
890
VMScore
CVE-2011-4857
Heap-based buffer overflow in the in_mod.dll plugin in Winamp prior to 5.623 allows remote malicious users to execute arbitrary code via crafted song message data in an Impulse Tracker (IT) file. NOTE: some of these details are obtained from third party information.
Nullsoft Winamp 5.05
Nullsoft Winamp 5.04
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.56
Nullsoft Winamp 2.92
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.11
Nullsoft Winamp 5.2
Nullsoft Winamp 5.32
Nullsoft Winamp 5.22
Nullsoft Winamp 5.07
Nullsoft Winamp 5.06
Nullsoft Winamp 1.006
Nullsoft Winamp 1.90
Nullsoft Winamp 5.58
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 0.92
828
VMScore
CVE-2011-3834
Multiple integer overflows in the in_avi.dll plugin in Winamp prior to 5.623 allow remote malicious users to execute arbitrary code via an AVI file with a crafted value for (1) the number of streams or (2) the size of the RIFF INFO chunk, leading to a heap-based buffer overflow.
Nullsoft Winamp 5.06
Nullsoft Winamp 5.05
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.531
Nullsoft Winamp 5.56
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.11
Nullsoft Winamp 5.2
Nullsoft Winamp 5.33
Nullsoft Winamp 5.32
Nullsoft Winamp 5.07
Nullsoft Winamp 1.006
Nullsoft Winamp 1.90
Nullsoft Winamp 5.58
Nullsoft Winamp 2.95
Nullsoft Winamp 5.55
Nullsoft Winamp 5.551
Nullsoft Winamp 5.5
435
VMScore
CVE-2014-3442
Winamp 5.666 and previous versions allows remote malicious users to cause a denial of service (memory corruption and crash) via a malformed .FLV file, related to f263.w5s.
Nullsoft Winamp 5.0
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.24
Nullsoft Winamp 5.3
Nullsoft Winamp 5.51
Nullsoft Winamp 5.55
Nullsoft Winamp 5.581
Nullsoft Winamp 5.59
Nullsoft Winamp 5.03
Nullsoft Winamp 5.04
Nullsoft Winamp 5.091
Nullsoft Winamp 5.093
Nullsoft Winamp 5.2
Nullsoft Winamp 5.21
Nullsoft Winamp 5.33
Nullsoft Winamp 5.34
Nullsoft Winamp 5.35
Nullsoft Winamp 5.531
Nullsoft Winamp 5.54
1 EDB exploit
605
VMScore
CVE-2012-3890
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.51
Nullsoft Winamp 5.31
Nullsoft Winamp 5.3
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.093
Nullsoft Winamp 5.091
Nullsoft Winamp 2.9
Nullsoft Winamp 5.59
Nullsoft Winamp 5.581
Nullsoft Winamp 5.54
Nullsoft Winamp 5.35
Nullsoft Winamp 5.34
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.572
605
VMScore
CVE-2012-3889
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.61
Nullsoft Winamp 5.59
Nullsoft Winamp 5.54
Nullsoft Winamp 5.36
Nullsoft Winamp 5.35
Nullsoft Winamp 5.22
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.0
Nullsoft Winamp 2.91
Nullsoft Winamp 2.0
Nullsoft Winamp 0.20a
Nullsoft Winamp 0.92
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.52
Nullsoft Winamp 5.51
Nullsoft Winamp 5.32
Nullsoft Winamp 5.31
383
VMScore
CVE-2008-3567
Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp prior to 5.541 allows remote malicious users to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags.
Nullsoft Winamp 2.50
Nullsoft Winamp 2.5e
Nullsoft Winamp 2.70
Nullsoft Winamp 2.71
Nullsoft Winamp 2.78
Nullsoft Winamp 2.79
Nullsoft Winamp 3.1
Nullsoft Winamp 5.0
Nullsoft Winamp 5.04
Nullsoft Winamp 5.05
Nullsoft Winamp 5.09
Nullsoft Winamp 5.091
Nullsoft Winamp 5.13
Nullsoft Winamp 5.2
Nullsoft Winamp 5.32
Nullsoft Winamp 5.33
Nullsoft Winamp 5.53
Nullsoft Winamp
Nullsoft Winamp 2.0
Nullsoft Winamp 2.62
Nullsoft Winamp 2.64
Nullsoft Winamp 2.74
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »