Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
winamp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0547
Buffer overflow in the mini-browser for Winamp 2.79 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the title field of an ID3v2 tag.
Nullsoft Winamp
NA
CVE-2012-4045
Multiple heap-based buffer overflows in bmp.w5s in Winamp prior to 5.63 build 3235 allow remote malicious users to execute arbitrary code via the (1) strf chunk in BI_RGB or (2) UYVY video data in an AVI file, or (3) decompressed TechSmith Screen Capture Codec (TSCC) data in an A...
Nullsoft Winamp
NA
CVE-2002-1176
Buffer overflow in Winamp 2.81 allows remote malicious users to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file.
Nullsoft Winamp 2.81
NA
CVE-2006-0476
Buffer overflow in Nullsoft Winamp 5.12 allows remote malicious users to execute arbitrary code via a playlist (pls) file with a long file name (File1 field).
Nullsoft Winamp 5.12
4 EDB exploits
1 Github repository
NA
CVE-2005-3188
Buffer overflow in Nullsoft Winamp 5.094 allows remote malicious users to execute arbitrary code via (1) an m3u file containing a long line ending in .wma or (2) a pls file containing a long File1 value ending in .wma, a different vulnerability than CVE-2006-0476.
Nullsoft Winamp 5.094
NA
CVE-2007-4392
Winamp 5.35 allows remote malicious users to cause a denial of service (program stack overflow and application crash) via an M3U file that recursively includes itself.
Nullsoft Winamp 5.35
NA
CVE-2010-3137
Untrusted search path vulnerability in Nullsoft Winamp 5.581, and probably other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wnaspi32.dll that is located in the same folder as a .669, ...
Nullsoft Winamp 5.581
1 EDB exploit
NA
CVE-2002-1524
Buffer overflow in XML parser in wsabi.dll of Winamp 3 (1.0.0.488) allows remote malicious users to execute arbitrary code via a skin file (.wal) with a long include file tag.
Nullsoft Winamp 3.0
NA
CVE-2007-1921
LIBSNDFILE.DLL, as used by AOL Nullsoft Winamp 5.33 and possibly other products, allows remote malicious users to execute arbitrary code via a crafted .MAT file that contains a value that is used as an offset, which triggers memory corruption.
Nullsoft Winamp 5.33
NA
CVE-2007-1922
The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote malicious users to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory cor...
Nullsoft Winamp 5.33
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »