3 matches found
Nullsoft Winamp Player Playlists Name Handling Buffer Overflow (CVE-2006-0476; CVE-2006-0708)
NullSoft Winamp is a multimedia player that is capable of playing many formats of audio and video files. Winamp is capable of retrieving and displaying meta data embedded in media files. There exists a buffer overflow vulnerability in Nullsoft Winamp Player. The vulnerability is caused by...
CVE-2006-0708
CVE-2006-0708 describes multiple buffer overflows in Nullsoft Winamp 5.13 and earlier that allow remote code execution via crafted playlists (.m3u/.pls) with long URLs or filenames ending in .wma. Connected docs confirm related variants (CVE-2005-3188, CVE-2006-0476) and publicly available exploi...
CVE-2006-0708
Multiple buffer overflows in NullSoft Winamp 5.13 and earlier allow remote attackers to execute arbitrary code via 1 an m3u file containing a long URL ending in .wma, 2 a pls file containing a File1 field with a long URL ending in .wma, or 3 an m3u file with a long filename, variants of...