Lucene search

PRIOn knowledge basePRION:CVE-2006-0720

HistoryFeb 23, 2006 - 9:02 p.m.

Stack overflow

2006-02-2321:02:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

High

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.4%

JSON

Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file.

CPENameOperatorVersion
winampeq5.12
winampeq5.13

CPE	Name	Operator	Version
	winamp	eq	5.12
	winamp	eq	5.13

References

forums.winamp.com/showthread.php?threadid=238648

securityreason.com/securityalert/476

securitytracker.com/id?1015675

www.nsfocus.com/english/homepage/research/0601.htm

www.securityfocus.com/archive/1/425888/100/0/threaded

www.securityfocus.com/bid/16785

exchange.xforce.ibmcloud.com/vulnerabilities/24740

8.2 High

AI Score

Confidence

High

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.4%

JSON

Related for PRION:CVE-2006-0720