219 matches found
CVE-2009-1831
The Nullsoft Modern Skins Support module genff.dll in Nullsoft Winamp before 5.552 allows remote attackers to execute arbitrary code via a crafted MAKI file, which triggers an incorrect sign extension, an integer overflow, and a stack-based buffer overflow...
CVE-2009-1831
The CVE-2009-1831 flaw affects Nullsoft Winamp’s gen_ff.dll in versions before 5.552. It allows a remote attacker to trigger a stack-based buffer overflow while parsing a MAKI file, caused by an incorrect sign extension and an integer overflow. Result: remote code execution or crashes as describe...
Nullsoft Winamp 'gen_ff.dll'缓冲区溢出漏洞
Bugraq ID: 35052 CNCAN ID:CNCAN-2009052503 Nullsoft Winamp是一款流行的媒体播放程序。 Nullsoft Winamp处理.maki文件存在一个不正确的类型指派错误,远程攻击者可以利用漏洞进行缓冲区溢出,可能导致以应用程序权限执行任意指令。 当genff.dll处理.maki文件时,读取两个字节并进行符号扩展,导致基于栈的缓冲区溢出,构建恶意文件,诱使用户处理可触发此漏洞。 NullSoft Winamp 5.3.2 NullSoft Winamp 5.0 91 NullSoft Winamp 5.0 9 NullSoft Wina...
Winamp MAKI脚本解析模块栈溢出漏洞
BUGTRAQ ID: 35052 Winamp是一款流行的媒体播放器,支持多种文件格式。 Winamp在解析.maki文件(一种编译过的脚本文件)时没有执行正确的类型赋值,可能导致缓冲区溢出。攻击者可以通过网页或下载对用户提供流行皮肤文件,该皮肤文件利用maki脚本在当前用户环境中执行任意代码。 Winamp的流行皮肤脚本引擎从.maki文件中读取字符串,字符串的格式如下(多字节值为little endian字节序列): Offset Size Description --------- ------ --------------------------------------...
SHOUTcast服务器DNAS中继远程溢出漏洞
BUGTRAQ ID: 33904 SHOUTcast是一款网络电台服务器软件,由Nullsoft开发。 SHOUTcast在接收中继主服务器的数据时存在缓冲区溢出漏洞,如果SHOUTcast管理员受骗将服务器用作恶意服务器中继的话,接收数据时就可能溢出静态缓冲区,导致执行任意代码。 Nullsoft Shoutcast Server 1.9.8 厂商补丁: Nullsoft -------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.shoutcast.com/...
Update Protection against Nullsoft Winamp AIFF Parsing Heap Buffer Overflow
A vulnerability was reported in Nullsoft Winamp. Nullsoft Winamp is a multimedia player application that is capable of playing many formats of audio and video files, including CD tracks, MP3 music files or MPEG video files as well as numerous other formats. The vulnerability is due to improper...
Cross site scripting
Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting XSS attacks via an MP3 file with JavaScript in id3 tags...
CVE-2008-3567
Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting XSS attacks via an MP3 file with JavaScript in id3 tags...
CVE-2008-3567
Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting XSS attacks via an MP3 file with JavaScript in id3 tags...
CVE-2008-3567
CVE-2008-3567 affects Winamp before 5.541: cross-zone scripting via the NowPlaying feature allows XSS through an MP3 file with JavaScript in id3 tags. Vulnerable component is Winamp’s NowPlaying metadata handling; root cause is unsanitized id3 tag content rendered by the embedded browser. Observe...
Winamp 'NowPlaying'未明安全漏洞
BUGTRAQ ID: 30539 CNCAN ID:CNCAN-2008080601 Winamp是一款媒体播放程序。 Winamp包含的NowPlaying"功能存在未明错误,目前没有详细漏洞细节提供。 NullSoft Winamp 5.54 升级程序: NullSoft Winamp 5.54 NullSoft winamp5541fullen-us.exe http://download.nullsoft.com/winamp/client/winamp5541fullen-us.exe NullSoft winamp5541liteen-us.exe...
Design/Logic Flaw
Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning...
CVE-2008-3441
Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning...
CVE-2008-3441
Nullsoft Winamp before 5.24 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning...
CVE-2008-3441
Winamp prior to 5.24 fails to verify update authenticity, enabling MITM attackers to run arbitrary code through Trojan horse updates. The vulnerability is demonstrated by use of evilgrade and DNS cache poisoning. Affected component is the update verification process; root cause relates to insuffi...
Winamp Ultravox流元数据多个栈溢出漏洞
BUGTRAQ ID: 27344 CVECAN ID: CVE-2008-0065 Winamp是一款流行的媒体播放器,支持多种文件格式。 Winamp在处理畸形格式的数据时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制用户系统。 Winamp的inmp3.dll库在解析Ultravox流元数据时没有正确地创建流标题。如果metadata部分设置了超长的artist和name标签值的话,就可能触发栈溢出,导致执行任意指令。 Nullsoft Winamp 5.51 Nullsoft Winamp 5.5 Nullsoft Winamp 5.21 Nullsoft --------...
CVE-2007-6403
Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certai...
CVE-2007-6403
Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certai...
CVE-2007-6403
CVE-2007-6403 involves a stack-based buffer overflow in Nullsoft Winamp 5.32 related to its handling of crafted Unicode in MP4 files, with the issue exploitable when the target opens a crafted MP4 contained in a .rar archive. The vulnerability enables user-assisted remote code execution on the af...
Nullsoft Winamp 5.32 MP4 tags Stack Overflow Exploit
No description provided by source. !/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Tuned for Nullsoft Winamp 5.32 d.i. Shell on port 49152 usage: well, not much fun for you kids here ...