Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nullsoft vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2015-9268
Nullsoft Scriptable Install System (NSIS) prior to 2.49 has unsafe implicit linking against Version.dll. In other words, there is no protection mechanism in which a wrapper function resolves the dependency at an appropriate time during runtime.
Nullsoft Nullsoft Scriptable Install System
Debian Debian Linux 8.0
5.5
CVSSv3
CVE-2015-9267
Nullsoft Scriptable Install System (NSIS) prior to 2.49 uses temporary folder locations that allow unprivileged local users to overwrite files. This allows a local attack in which either a plugin or the uninstaller can be replaced by a Trojan horse program.
Nullsoft Nullsoft Scriptable Install System
Debian Debian Linux 8.0
5.3
CVSSv3
CVE-2023-37378
Nullsoft Scriptable Install System (NSIS) prior to 3.09 mishandles access control for an uninstaller directory.
Nullsoft Nullsoft Scriptable Install System
NA
CVE-2015-0941
The Inetc plugin for Nullsoft Scriptable Install System (NSIS), as used in CERT/CC Failure Observation Engine (FOE) and other products, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and possibly execute arbitr...
Inetc Project Inetc
1 Github repository
NA
CVE-2014-3442
Winamp 5.666 and previous versions allows remote malicious users to cause a denial of service (memory corruption and crash) via a malformed .FLV file, related to f263.w5s.
Nullsoft Winamp 5.57
Nullsoft Winamp 5.093
Nullsoft Winamp 5.552
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 5.111
Nullsoft Winamp 5.09
Nullsoft Winamp 5.55
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 5.23
Nullsoft Winamp 5.61
Nullsoft Winamp 5.112
Nullsoft Winamp 5.02
Nullsoft Winamp 5.551
Nullsoft Winamp 5.01
Nullsoft Winamp 5.53
Nullsoft Winamp 5.531
Nullsoft Winamp 5.33
Nullsoft Winamp 5.54
Nullsoft Winamp 5.623
Nullsoft Winamp 5.5
1 EDB exploit
NA
CVE-2013-4694
Stack-based buffer overflow in gen_jumpex.dll in Winamp prior to 5.64 Build 3418 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a package with a long Skin directory name. NOTE: a second buffer overflow involving a long G...
Nullsoft Winamp 5.57
Nullsoft Winamp 5.093
Nullsoft Winamp 5.552
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp
Nullsoft Winamp 5.111
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp 5.55
Nullsoft Winamp 2.9
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 5.23
Nullsoft Winamp 5.61
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.112
Nullsoft Winamp 5.02
Nullsoft Winamp 5.551
Nullsoft Winamp 5.01
Nullsoft Winamp 5.53
2 EDB exploits
NA
CVE-2012-4045
Multiple heap-based buffer overflows in bmp.w5s in Winamp prior to 5.63 build 3235 allow remote malicious users to execute arbitrary code via the (1) strf chunk in BI_RGB or (2) UYVY video data in an AVI file, or (3) decompressed TechSmith Screen Capture Codec (TSCC) data in an A...
Nullsoft Winamp
NA
CVE-2012-3890
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.57
Nullsoft Winamp 5.093
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 5.111
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp
Nullsoft Winamp 5.55
Nullsoft Winamp 2.9
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 5.23
Nullsoft Winamp 5.61
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.112
Nullsoft Winamp 5.02
Nullsoft Winamp 5.01
Nullsoft Winamp 5.53
Nullsoft Winamp 5.531
Nullsoft Winamp 5.33
NA
CVE-2012-3889
The in_mod plugin in Winamp prior to 5.63 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a .IT file.
Nullsoft Winamp 5.57
Nullsoft Winamp 5.093
Nullsoft Winamp 5.36
Nullsoft Winamp 5.24
Nullsoft Winamp 5.111
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp
Nullsoft Winamp 5.55
Nullsoft Winamp 2.9
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 5.23
Nullsoft Winamp 5.61
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.112
Nullsoft Winamp 5.02
Nullsoft Winamp 5.01
Nullsoft Winamp 5.53
Nullsoft Winamp 5.531
Nullsoft Winamp 5.33
NA
CVE-2011-3834
Multiple integer overflows in the in_avi.dll plugin in Winamp prior to 5.623 allow remote malicious users to execute arbitrary code via an AVI file with a crafted value for (1) the number of streams or (2) the size of the RIFF INFO chunk, leading to a heap-based buffer overflow.
Nullsoft Winamp 5.57
Nullsoft Winamp 5.093
Nullsoft Winamp 5.552
Nullsoft Winamp 5.24
Nullsoft Winamp 5.111
Nullsoft Winamp 0.92
Nullsoft Winamp 5.09
Nullsoft Winamp 2.6
Nullsoft Winamp 2.9
Nullsoft Winamp 5.31
Nullsoft Winamp 5.05
Nullsoft Winamp 5.23
Nullsoft Winamp 0.20a
Nullsoft Winamp 5.112
Nullsoft Winamp 5.02
Nullsoft Winamp 5.551
Nullsoft Winamp 5.01
Nullsoft Winamp 5.53
Nullsoft Winamp 5.531
Nullsoft Winamp 5.33
Nullsoft Winamp 5.54
Nullsoft Winamp 5.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »