Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nullsoft vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2005-2310
Buffer overflow in Winamp 5.03a, 5.09 and 5.091, and other versions prior to 5.094, allows remote malicious users to execute arbitrary code via an MP3 file with a long ID3v2 tag such as (1) ARTIST or (2) TITLE.
Nullsoft Winamp 5.03a
Nullsoft Winamp 5.09
Nullsoft Winamp 5.091
Nullsoft Winamp
1 EDB exploit
7.5
CVSSv2
CVE-2003-0765
The IN_MIDI.DLL plugin 3.01 and previous versions, as used in Winamp 2.91, allows remote malicious users to execute arbitrary code via a MIDI file with a large "Track data size" value.
Nullsoft Winamp 3.0
Nullsoft Winamp 3.1
Nullsoft Winamp 2.81
Nullsoft Winamp 2.91
1 EDB exploit
4.3
CVSSv2
CVE-2006-3007
Multiple cross-site scripting (XSS) vulnerabilities in SHOUTcast 1.9.5 allow remote malicious users to inject arbitrary HTML or web script via the DJ fields (1) Description, (2) URL, (3) Genre, (4) AIM, and (5) ICQ.
Nullsoft Shoutcast Server 1.8.9
Nullsoft Shoutcast Server 1.9.5
Nullsoft Shoutcast Server 1.7.1
Nullsoft Shoutcast Server 1.9.4
Nullsoft Shoutcast Server 1.8.3
Nullsoft Shoutcast Server 1.9.2
9.3
CVSSv2
CVE-2009-1788
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 up to and including 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC f...
Nullsoft Winamp 5.541
Nullsoft Winamp 5.51
Mega-nerd Libsndfile 1.0.17
Mega-nerd Libsndfile 1.0.16
Nullsoft Winamp 5.552
Mega-nerd Libsndfile 1.0.15
Nullsoft Winamp 5.55
Nullsoft Winamp 5.54
Mega-nerd Libsndfile 1.0.19
Mega-nerd Libsndfile 1.0.18
Nullsoft Winamp 5.52
Nullsoft Winamp 5.5
9.3
CVSSv2
CVE-2009-1791
Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 up to and including 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via an AIF...
Mega-nerd Libsndfile 1.0.16
Mega-nerd Libsndfile 1.0.15
Nullsoft Winamp 5.552
Mega-nerd Libsndfile 1.0.19
Nullsoft Winamp 5.51
Nullsoft Winamp 5.52
Mega-nerd Libsndfile 1.0.18
Mega-nerd Libsndfile 1.0.17
Nullsoft Winamp 5.5
Nullsoft Winamp 5.55
Nullsoft Winamp 5.54
Nullsoft Winamp 5.541
10
CVSSv2
CVE-2008-0065
Multiple stack-based buffer overflows in in_mp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote malicious users to execute arbitrary code via a long (1) artist or (2) name tag in Ultravox streaming metadata, related to construction of stream titles.
Winamp Nullsoft Winamp 5.5
Winamp Nullsoft Winamp 5.51
Winamp Nullsoft Winamp 5.21
1 EDB exploit
NA
CVE-2023-37378
Nullsoft Scriptable Install System (NSIS) prior to 3.09 mishandles access control for an uninstaller directory.
Nullsoft Nullsoft Scriptable Install System
7.5
CVSSv2
CVE-2002-0546
Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote malicious users to execute script via an ID3v1 or ID3v2 tag in an MP3 file.
Nullsoft Winamp 2.79
Nullsoft Winamp 2.78
7.2
CVSSv2
CVE-2000-0049
Buffer overflow in Winamp client allows remote malicious users to execute commands via a long entry in a .pls file.
Nullsoft Winamp 2.0
Nullsoft Winamp 2.10
1 EDB exploit
9.3
CVSSv2
CVE-2006-5567
Multiple heap-based buffer overflows in AOL Nullsoft WinAmp prior to 5.31 allow user-assisted remote malicious users to execute arbitrary code via a crafted (1) ultravox-max-msg header to the Ultravox protocol handler or (2) unspecified Lyrics3 tags.
Nullsoft Winamp 5.24
Nullsoft Winamp 5.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »