Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
winamp nullsoft winamp 5.5 vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2008-0065
Multiple stack-based buffer overflows in in_mp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote malicious users to execute arbitrary code via a long (1) artist or (2) name tag in Ultravox streaming metadata, related to construction of stream titles.
Winamp Nullsoft Winamp 5.5
Winamp Nullsoft Winamp 5.51
Winamp Nullsoft Winamp 5.21
1 EDB exploit
890
VMScore
CVE-2011-4857
Heap-based buffer overflow in the in_mod.dll plugin in Winamp prior to 5.623 allows remote malicious users to execute arbitrary code via crafted song message data in an Impulse Tracker (IT) file. NOTE: some of these details are obtained from third party information.
Nullsoft Winamp 5.05
Nullsoft Winamp 5.04
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.56
Nullsoft Winamp 2.92
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.11
Nullsoft Winamp 5.2
Nullsoft Winamp 5.32
Nullsoft Winamp 5.22
Nullsoft Winamp 5.07
Nullsoft Winamp 5.06
Nullsoft Winamp 1.006
Nullsoft Winamp 1.90
Nullsoft Winamp 5.58
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 0.92
828
VMScore
CVE-2011-3834
Multiple integer overflows in the in_avi.dll plugin in Winamp prior to 5.623 allow remote malicious users to execute arbitrary code via an AVI file with a crafted value for (1) the number of streams or (2) the size of the RIFF INFO chunk, leading to a heap-based buffer overflow.
Nullsoft Winamp 5.06
Nullsoft Winamp 5.05
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.531
Nullsoft Winamp 5.56
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.11
Nullsoft Winamp 5.2
Nullsoft Winamp 5.33
Nullsoft Winamp 5.32
Nullsoft Winamp 5.07
Nullsoft Winamp 1.006
Nullsoft Winamp 1.90
Nullsoft Winamp 5.58
Nullsoft Winamp 2.95
Nullsoft Winamp 5.55
Nullsoft Winamp 5.551
Nullsoft Winamp 5.5
435
VMScore
CVE-2014-3442
Winamp 5.666 and previous versions allows remote malicious users to cause a denial of service (memory corruption and crash) via a malformed .FLV file, related to f263.w5s.
Nullsoft Winamp 5.0
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.24
Nullsoft Winamp 5.3
Nullsoft Winamp 5.51
Nullsoft Winamp 5.55
Nullsoft Winamp 5.581
Nullsoft Winamp 5.59
Nullsoft Winamp 5.03
Nullsoft Winamp 5.04
Nullsoft Winamp 5.091
Nullsoft Winamp 5.093
Nullsoft Winamp 5.2
Nullsoft Winamp 5.21
Nullsoft Winamp 5.33
Nullsoft Winamp 5.34
Nullsoft Winamp 5.35
Nullsoft Winamp 5.531
Nullsoft Winamp 5.54
1 EDB exploit
605
VMScore
CVE-2012-3890
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.51
Nullsoft Winamp 5.31
Nullsoft Winamp 5.3
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.093
Nullsoft Winamp 5.091
Nullsoft Winamp 2.9
Nullsoft Winamp 5.59
Nullsoft Winamp 5.581
Nullsoft Winamp 5.54
Nullsoft Winamp 5.35
Nullsoft Winamp 5.34
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.572
605
VMScore
CVE-2012-3889
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.61
Nullsoft Winamp 5.59
Nullsoft Winamp 5.54
Nullsoft Winamp 5.36
Nullsoft Winamp 5.35
Nullsoft Winamp 5.22
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.0
Nullsoft Winamp 2.91
Nullsoft Winamp 2.0
Nullsoft Winamp 0.20a
Nullsoft Winamp 0.92
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.52
Nullsoft Winamp 5.51
Nullsoft Winamp 5.32
Nullsoft Winamp 5.31
383
VMScore
CVE-2008-3567
Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp prior to 5.541 allows remote malicious users to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags.
Nullsoft Winamp 2.50
Nullsoft Winamp 2.5e
Nullsoft Winamp 2.70
Nullsoft Winamp 2.71
Nullsoft Winamp 2.78
Nullsoft Winamp 2.79
Nullsoft Winamp 3.1
Nullsoft Winamp 5.0
Nullsoft Winamp 5.04
Nullsoft Winamp 5.05
Nullsoft Winamp 5.09
Nullsoft Winamp 5.091
Nullsoft Winamp 5.13
Nullsoft Winamp 5.2
Nullsoft Winamp 5.32
Nullsoft Winamp 5.33
Nullsoft Winamp 5.53
Nullsoft Winamp
Nullsoft Winamp 2.0
Nullsoft Winamp 2.62
Nullsoft Winamp 2.64
Nullsoft Winamp 2.74
945
VMScore
CVE-2010-4371
Buffer overflow in the in_mod plugin in Winamp prior to 5.6 allows remote malicious users to have an unspecified impact via vectors related to the comment box.
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.02
Nullsoft Winamp 5.01
Nullsoft Winamp 5.55
Nullsoft Winamp 5.551
Nullsoft Winamp 5.541
Nullsoft Winamp 5.5
Nullsoft Winamp 5.34
Nullsoft Winamp 5.35
Nullsoft Winamp 5.31
Nullsoft Winamp 5.3
Nullsoft Winamp
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 0.92
Nullsoft Winamp 5.03
Nullsoft Winamp 5.552
Nullsoft Winamp 2.0
Nullsoft Winamp 2.10
Nullsoft Winamp 5.1
Nullsoft Winamp 2.6
3 EDB exploits
383
VMScore
CVE-2010-4373
The in_mp4 plugin in Winamp prior to 5.6 allows remote malicious users to cause a denial of service (application crash) via crafted (1) metadata or (2) albumart in an invalid MP4 file.
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.03
Nullsoft Winamp 5.02
Nullsoft Winamp 2.10
Nullsoft Winamp 5.55
Nullsoft Winamp 2.6
Nullsoft Winamp 5.541
Nullsoft Winamp 5.54
Nullsoft Winamp 5.34
Nullsoft Winamp 5.094
Nullsoft Winamp 5.31
Nullsoft Winamp 5.23
Nullsoft Winamp
Nullsoft Winamp 5.04
Nullsoft Winamp 5.09
Nullsoft Winamp 5.0
Nullsoft Winamp 0.92
Nullsoft Winamp 2.91
Nullsoft Winamp 5.552
Nullsoft Winamp 2.0
Nullsoft Winamp 2.9
828
VMScore
CVE-2010-2586
Multiple integer overflows in in_nsv.dll in the in_nsv plugin in Winamp prior to 5.6 allow remote malicious users to execute arbitrary code via a crafted Table of Contents (TOC) in a (1) NSV stream or (2) NSV file that triggers a heap-based buffer overflow.
Nullsoft Winamp 5.06
Nullsoft Winamp 5.05
Nullsoft Winamp 1.90
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.56
Nullsoft Winamp 2.92
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.2
Nullsoft Winamp 5.13
Nullsoft Winamp 5.32
Nullsoft Winamp 5.22
Nullsoft Winamp 5.04
Nullsoft Winamp 5.09
Nullsoft Winamp 5.0
Nullsoft Winamp 0.92
Nullsoft Winamp 5.552
Nullsoft Winamp 2.0
Nullsoft Winamp 2.9
Nullsoft Winamp 5.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »