Lucene search
HistoryDec 02, 2010 - 4:22 p.m.
CVE-2010-2586
cve-2010-2586
integer overflows
in_nsv.dll
in_nsv plugin
winamp
remote code execution
heap-based buffer overflow
nvd
security vulnerability
7.7 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.109 Low
EPSS
Percentile
95.1%
Multiple integer overflows in in_nsv.dll in the in_nsv plugin in Winamp before 5.6 allow remote attackers to execute arbitrary code via a crafted Table of Contents (TOC) in a (1) NSV stream or (2) NSV file that triggers a heap-based buffer overflow.
References
Related
prion
prion
Integer overflow
2010-12-02 16:22:00
Integer overflow
2010-12-02 16:22:00
securityvulns
securityvulns
Secunia Research: Winamp NSV Table of Contents Parsing Integer Overflow
2010-12-01 00:00:00
WinAmp integer overflow
2010-12-22 00:00:00
cve
cve
CVE-2010-4372
2010-12-02 16:22:00
openvas
openvas
Winamp Multiple Vulnerabilities
2010-12-09 00:00:00
Winamp Multiple Vulnerabilities
2010-12-09 00:00:00
nessus
nessus
Winamp < 5.6 Multiple Vulnerabilities
2010-11-30 00:00:00
Winamp < 5.60 Multiple Vulnerabilities
2010-10-27 00:00:00
7.7 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.109 Low
EPSS
Percentile
95.1%
Related for CVE-2010-2586