Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nullsoft vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2010-3137
Untrusted search path vulnerability in Nullsoft Winamp 5.581, and probably other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wnaspi32.dll that is located in the same folder as a .669, ...
Nullsoft Winamp 5.581
1 EDB exploit
9.3
CVSSv2
CVE-2007-1921
LIBSNDFILE.DLL, as used by AOL Nullsoft Winamp 5.33 and possibly other products, allows remote malicious users to execute arbitrary code via a crafted .MAT file that contains a value that is used as an offset, which triggers memory corruption.
Nullsoft Winamp 5.33
9.3
CVSSv2
CVE-2007-1922
The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote malicious users to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory cor...
Nullsoft Winamp 5.33
7.5
CVSSv2
CVE-2002-1176
Buffer overflow in Winamp 2.81 allows remote malicious users to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file.
Nullsoft Winamp 2.81
7.5
CVSSv2
CVE-2002-1177
Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote malicious users to execute arbitrary code via an MP3 file containing a long (1) Artist or (2) Album ID3v2 tag.
Nullsoft Winamp 3.0
5
CVSSv2
CVE-2004-2384
NullSoft Winamp 5.02 allows remote malicious users to cause a denial of service (crash) by creating a file with a long filename, which causes the victim's player to crash when the file is opened from the command line.
Nullsoft Winamp 5.02
2.6
CVSSv2
CVE-2004-1396
Winamp 5.07 and possibly other versions, allows remote malicious users to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.
Nullsoft Winamp 5.07
9.3
CVSSv2
CVE-2003-1272
Multiple buffer overflows in Winamp 3.0 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter.
Nullsoft Winamp 3.0
2.1
CVSSv2
CVE-2003-1273
Winamp 3.0 allows remote malicious users to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters.
Nullsoft Winamp 3.0
5
CVSSv2
CVE-2003-1274
Winamp 3.0 allows remote malicious users to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux.
Nullsoft Winamp 3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »