Lucene search

[email protected]CVE-2012-3889

HistoryJul 11, 2012 - 10:26 a.m.

CVE-2012-3889

2012-07-1110:26:11

CWE-119

[email protected]

web.nvd.nist.gov

winamp

in_mod plugin

cve-2012-3889

vulnerability

denial of service

memory corruption

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.3%

JSON

The in_mod plugin in Winamp before 5.63 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a .IT file.

Affected configurations

NVD

Node

nullsoftwinampRange≤5.623

nullsoftwinampMatch0.20a

nullsoftwinampMatch0.92

nullsoftwinampMatch1.006

nullsoftwinampMatch1.90

nullsoftwinampMatch2.0

nullsoftwinampMatch2.6

nullsoftwinampMatch2.9

nullsoftwinampMatch2.10

nullsoftwinampMatch2.91

nullsoftwinampMatch2.92

nullsoftwinampMatch2.95

nullsoftwinampMatch5.0

nullsoftwinampMatch5.01

nullsoftwinampMatch5.1-surround

nullsoftwinampMatch5.02

nullsoftwinampMatch5.2

nullsoftwinampMatch5.3

nullsoftwinampMatch5.03

nullsoftwinampMatch5.04

nullsoftwinampMatch5.05

nullsoftwinampMatch5.5

nullsoftwinampMatch5.06

nullsoftwinampMatch5.07

nullsoftwinampMatch5.08c

nullsoftwinampMatch5.08d

nullsoftwinampMatch5.08e

nullsoftwinampMatch5.09

nullsoftwinampMatch5.11

nullsoftwinampMatch5.12

nullsoftwinampMatch5.13

nullsoftwinampMatch5.21

nullsoftwinampMatch5.22

nullsoftwinampMatch5.23

nullsoftwinampMatch5.24

nullsoftwinampMatch5.31

nullsoftwinampMatch5.32

nullsoftwinampMatch5.33

nullsoftwinampMatch5.34

nullsoftwinampMatch5.35

nullsoftwinampMatch5.36

nullsoftwinampMatch5.51

nullsoftwinampMatch5.51beta

nullsoftwinampMatch5.52

nullsoftwinampMatch5.53

nullsoftwinampMatch5.54

nullsoftwinampMatch5.54beta

nullsoftwinampMatch5.55

nullsoftwinampMatch5.55beta

nullsoftwinampMatch5.56

nullsoftwinampMatch5.57

nullsoftwinampMatch5.59beta

nullsoftwinampMatch5.61

nullsoftwinampMatch5.091

nullsoftwinampMatch5.093

nullsoftwinampMatch5.094

nullsoftwinampMatch5.111

nullsoftwinampMatch5.112

nullsoftwinampMatch5.531

nullsoftwinampMatch5.541

nullsoftwinampMatch5.572

nullsoftwinampMatch5.581

CPENameOperatorVersion
nullsoft:winampnullsoft winample5.623
nullsoft:winampnullsoft winampeq0.20a
nullsoft:winampnullsoft winampeq0.92
nullsoft:winampnullsoft winampeq1.006
nullsoft:winampnullsoft winampeq1.90
nullsoft:winampnullsoft winampeq2.0
nullsoft:winampnullsoft winampeq2.6
nullsoft:winampnullsoft winampeq2.9
nullsoft:winampnullsoft winampeq2.10
nullsoft:winampnullsoft winampeq2.91

CPE	Name	Operator	Version
nullsoft:winamp	nullsoft winamp	le	5.623
nullsoft:winamp	nullsoft winamp	eq	0.20a
nullsoft:winamp	nullsoft winamp	eq	0.92
nullsoft:winamp	nullsoft winamp	eq	1.006
nullsoft:winamp	nullsoft winamp	eq	1.90
nullsoft:winamp	nullsoft winamp	eq	2.0
nullsoft:winamp	nullsoft winamp	eq	2.6
nullsoft:winamp	nullsoft winamp	eq	2.9
nullsoft:winamp	nullsoft winamp	eq	2.10
nullsoft:winamp	nullsoft winamp	eq	2.91