2 matches found
CVE-2004-0820
Affected software: Winamp prior to 5.0.5. Vulnerability: remote code execution by parsing a malformed .WSZ (Winamp Skin) file; HTML/ scripts referenced from XML inside the WSZ are executed in the Local Computer Zone. Root cause: improper handling of skin XML/HTML references within WSZ, enabling a...
CVE-2004-0820
Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file...