Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nullsoft vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2015-9268
Nullsoft Scriptable Install System (NSIS) prior to 2.49 has unsafe implicit linking against Version.dll. In other words, there is no protection mechanism in which a wrapper function resolves the dependency at an appropriate time during runtime.
Nullsoft Nullsoft Scriptable Install System
Debian Debian Linux 8.0
5.5
CVSSv3
CVE-2015-9267
Nullsoft Scriptable Install System (NSIS) prior to 2.49 uses temporary folder locations that allow unprivileged local users to overwrite files. This allows a local attack in which either a plugin or the uninstaller can be replaced by a Trojan horse program.
Nullsoft Nullsoft Scriptable Install System
Debian Debian Linux 8.0
5.3
CVSSv3
CVE-2023-37378
Nullsoft Scriptable Install System (NSIS) prior to 3.09 mishandles access control for an uninstaller directory.
Nullsoft Nullsoft Scriptable Install System
NA
CVE-2015-0941
The Inetc plugin for Nullsoft Scriptable Install System (NSIS), as used in CERT/CC Failure Observation Engine (FOE) and other products, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and possibly execute arbitr...
Inetc Project Inetc
1 Github repository
NA
CVE-2014-3442
Winamp 5.666 and previous versions allows remote malicious users to cause a denial of service (memory corruption and crash) via a malformed .FLV file, related to f263.w5s.
Nullsoft Winamp 5.0
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.24
Nullsoft Winamp 5.3
Nullsoft Winamp 5.51
Nullsoft Winamp 5.55
Nullsoft Winamp 5.581
Nullsoft Winamp 5.59
Nullsoft Winamp 5.03
Nullsoft Winamp 5.04
Nullsoft Winamp 5.091
Nullsoft Winamp 5.093
Nullsoft Winamp 5.2
Nullsoft Winamp 5.21
Nullsoft Winamp 5.33
Nullsoft Winamp 5.34
Nullsoft Winamp 5.35
Nullsoft Winamp 5.531
Nullsoft Winamp 5.54
1 EDB exploit
NA
CVE-2013-4694
Stack-based buffer overflow in gen_jumpex.dll in Winamp prior to 5.64 Build 3418 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a package with a long Skin directory name. NOTE: a second buffer overflow involving a long G...
Nullsoft Winamp 1.90
Nullsoft Winamp 2.0
Nullsoft Winamp 5.0
Nullsoft Winamp 5.01
Nullsoft Winamp 5.08d
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.24
Nullsoft Winamp 5.3
Nullsoft Winamp 5.51
Nullsoft Winamp 5.55
Nullsoft Winamp 5.581
Nullsoft Winamp 5.59
Nullsoft Winamp 0.20a
Nullsoft Winamp 2.9
Nullsoft Winamp 2.91
Nullsoft Winamp 5.04
Nullsoft Winamp 5.05
Nullsoft Winamp 5.093
Nullsoft Winamp 5.094
Nullsoft Winamp 5.2
2 EDB exploits
NA
CVE-2012-4045
Multiple heap-based buffer overflows in bmp.w5s in Winamp prior to 5.63 build 3235 allow remote malicious users to execute arbitrary code via the (1) strf chunk in BI_RGB or (2) UYVY video data in an AVI file, or (3) decompressed TechSmith Screen Capture Codec (TSCC) data in an A...
Nullsoft Winamp
NA
CVE-2012-3889
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.61
Nullsoft Winamp 5.59
Nullsoft Winamp 5.54
Nullsoft Winamp 5.36
Nullsoft Winamp 5.35
Nullsoft Winamp 5.22
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.08c
Nullsoft Winamp 5.0
Nullsoft Winamp 2.91
Nullsoft Winamp 2.0
Nullsoft Winamp 0.20a
Nullsoft Winamp 0.92
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.52
Nullsoft Winamp 5.51
Nullsoft Winamp 5.32
Nullsoft Winamp 5.31
NA
CVE-2012-3890
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.56
Nullsoft Winamp 5.55
Nullsoft Winamp 5.51
Nullsoft Winamp 5.31
Nullsoft Winamp 5.3
Nullsoft Winamp 5.111
Nullsoft Winamp 5.112
Nullsoft Winamp 5.09
Nullsoft Winamp 5.08e
Nullsoft Winamp 5.093
Nullsoft Winamp 5.091
Nullsoft Winamp 2.9
Nullsoft Winamp 5.59
Nullsoft Winamp 5.581
Nullsoft Winamp 5.54
Nullsoft Winamp 5.35
Nullsoft Winamp 5.34
Nullsoft Winamp 5.21
Nullsoft Winamp 5.24
Nullsoft Winamp 5.13
Nullsoft Winamp 5.07
Nullsoft Winamp 5.572
NA
CVE-2011-3834
Multiple integer overflows in the in_avi.dll plugin in Winamp prior to 5.623 allow remote malicious users to execute arbitrary code via an AVI file with a crafted value for (1) the number of streams or (2) the size of the RIFF INFO chunk, leading to a heap-based buffer overflow.
Nullsoft Winamp 5.06
Nullsoft Winamp 5.05
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.0
Nullsoft Winamp 5.572
Nullsoft Winamp 2.91
Nullsoft Winamp 5.531
Nullsoft Winamp 5.56
Nullsoft Winamp 5.53
Nullsoft Winamp 5.52
Nullsoft Winamp 5.11
Nullsoft Winamp 5.2
Nullsoft Winamp 5.33
Nullsoft Winamp 5.32
Nullsoft Winamp 5.07
Nullsoft Winamp 1.006
Nullsoft Winamp 1.90
Nullsoft Winamp 5.58
Nullsoft Winamp 2.95
Nullsoft Winamp 5.55
Nullsoft Winamp 5.551
Nullsoft Winamp 5.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »