Lucene search
K

2439 matches found

NVD
NVD
added 2002/12/31 5:0 a.m.13 views

CVE-2002-1847

Buffer overflow in mplay32.exe of Microsoft Windows Media Player WMP 6.3 through 7.1 allows remote attackers to execute arbitrary commands via a long mp3 filename command line argument. NOTE: since the only known attack vector requires command line access, this may not be a vulnerability...

7.5CVSS7.7AI score0.33607EPSS
Exploits1References3
CVE
CVE
added 2002/12/20 5:0 a.m.50 views

CVE-2002-1177

CVE-2002-1177 maps to multiple buffer overflows in Winamp 3.0, specifically in the Media Library handling of ID3v2 tags. The vulnerability occurs when displaying an MP3 in the Media Library window, where long Artist or Album ID3v2 tags can cause memory corruption, enabling remote code execution. ...

7.5CVSS7.8AI score0.02632EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2002/12/20 5:0 a.m.21 views

CVE-2002-1177

Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote attackers to execute arbitrary code via an MP3 file containing a long 1 Artist or 2 Album ID3v2 tag...

7.8AI score0.02632EPSS
Exploits0References2
CVE
CVE
added 2002/12/20 5:0 a.m.50 views

CVE-2002-1176

This CVE concerns Winamp 2.81 (and Winamp 3.0) with buffer overflows in ID3v2 tag handling. A long Artist ID3v2 tag in an MP3 can cause a crash or allow remote code execution when loaded, per Foundstone advisory and NVD entry. Winamp 2.81 and Winamp 3.0 contain the overflow in the Artist field of...

7.5CVSS7.9AI score0.02345EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2002/12/19 12:0 a.m.47 views

Foundstone Research Labs Advisory - Exploitable Windows XP Media Files (fwd)

---------------------------------------------------------------------- Foundstone Research Labs Advisory - FS2002-11 Advisory Name: Exploitable Windows XP Media Files Release Date: December 18, 2002 Application: Windows Explorer Platforms: Windows XP Severity: Remote code execution Vendors:...

7.5CVSS7AI score0.23419EPSS
Exploits0
exploitpack
exploitpack
added 2002/08/24 12:0 a.m.14 views

GDAM123 0.9330.942 - Filename Buffer Overflow

GDAM123 0.9330.942 - Filename Buffer Overflow // source: https://www.securityfocus.com/bid/5578/info The GDAM123 command-line MP3 player is prone to a buffer overflow condition when handling overly long filenames. Under some circumstances, the player may be installed setuid root to allow...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2002/08/24 12:0 a.m.29 views

GDAM123 0.933/0.942 - Filename Buffer Overflow

// source: https://www.securityfocus.com/bid/5578/info The GDAM123 command-line MP3 player is prone to a buffer overflow condition when handling overly long filenames. Under some circumstances, the player may be installed setuid root to allow unprivileged users to run the player if access to...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/07/10 12:0 a.m.68 views

Multiple bugs in icecast.

It's possible to cause server's DoS and access mp3 files in any directory...

2.4AI score
Exploits0References2Affected Software1
NVD
NVD
added 2002/07/03 4:0 a.m.14 views

CVE-2002-0546

Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote attackers to execute script via an ID3v1 or ID3v2 tag in an MP3 file...

7.5CVSS6.6AI score0.01727EPSS
Exploits1References4
NVD
NVD
added 2002/06/25 4:0 a.m.17 views

CVE-2002-0337

RealPlayer 8 allows remote attackers to cause a denial of service CPU utilization via malformed .mp3 files...

5.4CVSS6.6AI score0.01572EPSS
Exploits0References3
CVE
CVE
added 2002/05/03 4:0 a.m.55 views

CVE-2002-0337

The CVE-2002-0337 entry concerns RealPlayer 8 and a denial-of-service condition triggered by processing malformed MP3 files. The vulnerability allows a remote attacker to induce high CPU usage, leading to service disruption. Affected software is RealPlayer 8; the exact component/file and root cau...

5.4CVSS7AI score0.01572EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2002/05/03 4:0 a.m.24 views

CVE-2002-0337

RealPlayer 8 allows remote attackers to cause a denial of service CPU utilization via malformed .mp3 files...

6.6AI score0.01572EPSS
Exploits0References3
securityvulns
securityvulns
added 2002/04/26 12:0 a.m.29 views

Mp3 file can execute code in Winamp [Sandblad advisory #5]

Sandblad advisory 5 - ---..---..---..---..---..---..---..---..---..---..---..---..---- Title: Mp3 file can execute code in Winamp. Date: 2002-04-26 Software: Nullsoft Winamp 2.79 Rating: High because mp3 files are widely trusted as safe. Impact: Specially crafted mp3 file can execute arbitrary...

7.7AI score
Exploits0
securityvulns
securityvulns
added 2002/04/26 12:0 a.m.37 views

Buffer overflow in Winamp

Buffer overflow on MP3 ID3v2 tag processing...

3.9AI score
Exploits0References1Affected Software1
NVD
NVD
added 2002/04/22 4:0 a.m.18 views

CVE-2002-0177

Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from an MP3 client...

7.5CVSS7.5AI score0.09549EPSS
Exploits0References6
Cvelist
Cvelist
added 2002/04/18 4:0 a.m.23 views

CVE-2002-0177

Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from an MP3 client...

7.5AI score0.09549EPSS
Exploits0References6
securityvulns
securityvulns
added 2002/03/01 12:0 a.m.27 views

DoS против Real Player

100 использование процессора при неправильном формате mp3-файла...

0.7AI score
Exploits0References1Affected Software1
CVE
CVE
added 2000/06/15 4:0 a.m.59 views

CVE-2000-0412

CVE-2000-0412 affects the Napster-era clients (gnapster/knapster). The vulnerability allows a remote attacker to read arbitrary files on the client by specifying full pathnames, due to improper restriction to MP3 files. The NVD entry assigns a CVSSv2 base score of 7.5 (HIGH) with network attack v...

7.5CVSS6.7AI score0.02748EPSS
Exploits0References4Affected Software1
NVD
NVD
added 1999/05/01 4:0 a.m.17 views

CVE-2000-0412

The gnapster and knapster clients for Napster do not properly restrict access only to MP3 files, which allows remote attackers to read arbitrary files from the client by specifying the full pathname for the file...

7.5CVSS6.7AI score0.02748EPSS
Exploits0References4
Rows per page
Query Builder