Published: 31/01/2006 Updated: 19/10/2018

CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9

VMScore: 780

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Buffer overflow in Nullsoft Winamp 5.12 allows remote malicious users to execute arbitrary code via a playlist (pls) file with a long file name (File1 field).

Vulnerable Product	Search on Vulmon	Subscribe to Product
nullsoft winamp 5.12

## # This file is part of the Metasploit Framework and may be redistributed # according to the licenses defined in the Authors field below In the # case of an unknown or missing license, this file defaults to the same # license as the core Framework (dual GPLv2 and Artistic) The latest # version of the Framework can always be obtained from metasp ...

#!/usr/bin/perl -w # =============================================================================================== # Winamp 512 Playlist UNC Path Computer Name Overflow Perl Exploit # By Umesh Wanve (umesh_345@yahoocom) # =============================================================================== ...

## # $Id: winamp_playlist_uncrb 9179 2010-04-30 08:40:19Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' cl ...

/* * * Winamp 512 Remote Buffer Overflow Universal Exploit (Zero-Day) * Bug discovered & exploit coded by ATmaCA * Web: wwwspyinstructorscom && wwwatmacasoftcom * E-Mail: atmaca@icqmailcom * Credit to Kozan * */ /* * * Tested with : * Winamp 512 on Win XP Pro Sp2 * */ /* * Usage: * * Execute exploit, it will crea ...

Winamp 5.12 UNC Path Buffer Overflow Exploit for Python

Winamp-512-Exploit Winamp 512 UNC Path Buffer Overflow Exploit for Python For preparing OSCE, I made a python script for CVE-2006-0476 exploit You can create your own payload with eg msfvenom -p windows/meterpreter/reverse_tcp LHOST=eth0 LPORT=4444 -a x86 --platform windows -f raw -e x86/alpha_mixed > payload You need to create your own payload Default one is bind sh

NVD-CWE-Other http://www.securityfocus.com/archive/1/423436/100/0/threaded http://www.heise.de/newsticker/meldung/68981 http://secunia.com/advisories/18649 http://www.winamp.com/player/version_history.php http://www.kb.cert.org/vuls/id/604745 http://www.securityfocus.com/bid/16410 http://www.osvdb.org/22789 http://www.us-cert.gov/cas/techalerts/TA06-032A.html http://securitytracker.com/id?1015552 http://securityreason.com/securityalert/386 http://securityreason.com/securityalert/398 http://www.vupen.com/english/advisories/2006/0361 https://exchange.xforce.ibmcloud.com/vulnerabilities/24361 https://www.exploit-db.com/exploits/3422 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1402 http://www.securityfocus.com/archive/1/423548/100/0/threaded https://nvd.nist.gov https://github.com/uzeyirdestan/Winamp-5.12-Exploit https://www.exploit-db.com/exploits/1460/https://www.kb.cert.org/vuls/id/604745

CVE-2006-0476

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect