The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote malicious users to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory corruption.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nullsoft winamp 5.33 |