7.5 High
AI Score
Confidence
Low
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.725 High
EPSS
Percentile
98.0%
Buffer overflow in Nullsoft Winamp 5.12 allows remote attackers to execute arbitrary code via a playlist (pls) file with a long file name (File1 field).
CPE | Name | Operator | Version |
---|---|---|---|
nullsoft:winamp | nullsoft winamp | eq | 5.12 |
secunia.com/advisories/18649
securityreason.com/securityalert/386
securityreason.com/securityalert/398
securitytracker.com/id?1015552
www.heise.de/newsticker/meldung/68981
www.kb.cert.org/vuls/id/604745
www.osvdb.org/22789
www.securityfocus.com/archive/1/423436/100/0/threaded
www.securityfocus.com/archive/1/423548/100/0/threaded
www.securityfocus.com/bid/16410
www.us-cert.gov/cas/techalerts/TA06-032A.html
www.vupen.com/english/advisories/2006/0361
www.winamp.com/player/version_history.php
exchange.xforce.ibmcloud.com/vulnerabilities/24361
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1402
www.exploit-db.com/exploits/3422