Nullsoft Winamp MP4 tags Stack Overflow

!/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Tuned for Nullsoft Winamp 5.32 d.i. Shell on port 49152 usage: well, not much fun for you kids here .. to get the shell you have to use ALT+3 and press UPDATE. Instead this one ...

Nullsoft Winamp 5.32 MP4 tags Stack Overflow Exploit

Exploit for unknown platform in category local exploits ==================================================== Nullsoft Winamp 5.32 MP4 tags Stack Overflow Exploit ==================================================== !/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited ...

nullsoft-overflow.txt

!/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Tuned for Nullsoft Winamp 5.32 d.i. Shell on port 49152 usage: well, not much fun for you kids here .. to get the shell you have to use ALT+3 and press UPDATE. Instead this one ...

NullSoft Winamp 5.32 - .MP4 Tags Stack Overflow

NullSoft Winamp 5.32 - .MP4 Tags Stack Overflow !/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Tuned for Nullsoft Winamp 5.32 d.i. Shell on port 49152 usage: well, not much fun for you kids here .. to get the shell you have ...

NullSoft Winamp 5.32 - .MP4 Tags Stack Overflow

!/bin/perl Nullsoft Winamp MP4 tags Stack Overflow 0-day discovered and exploited by SYS 49152 Tested on win XP SP2 ENG Tuned for Nullsoft Winamp 5.32 d.i. Shell on port 49152 usage: well, not much fun for you kids here .. to get the shell you have to use ALT+3 and press UPDATE. Instead this one ...

Buffer overflow

Buffer overflow in Nullsoft Winamp 5.3 allows user-assisted remote attackers to cause a denial of service crash via a crafted WMV file...

CVE-2007-2180

Buffer overflow in Nullsoft Winamp 5.3 allows user-assisted remote attackers to cause a denial of service crash via a crafted WMV file...

CVE-2007-2180

CVE-2007-2180 describes a buffer overflow in Nullsoft Winamp 5.3 triggered by processing crafted WMV files, allowing a user‑assisted remote attacker to crash the player (denial of service). The affected software is Winamp 5.3; the vulnerability stems from improper handling of WMV content, leading...

Nullsoft Winamp WMV文件处理拒绝服务漏洞

Nullsoft Winamp是一款流行的媒体播放器。 Nullsoft Winamp处理WMV文件存在问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 构建恶意的WMV文件，诱使用户访问，可导致以应用程序进程权限执行任意指令。 NullSoft Winamp 5.3 目前没有解决方案提供： http://www.winamp.com/ !/usr/bin/perl Winamp = WMV 5.3 Buffer Overflow DOS Exploit 0-DAY Type : Buffer Overflow - DOS R...

Memory corruption

The Impulse Tracker IT and ScreamTracker 3 S3M modules in INMOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted 1 .IT or 2 .S3M file containing integer values that are used as memory offsets, which triggers memory corruption...

[Full-disclosure] AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero)

AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption Off By Zero by Piotr Bania [email protected] http://www.piotrbania.com Severity: Critical - Possible remote code execution. Software affected: Tested on AOL Nullsoft Winamp v5.33 x86 Feb 13 2007 on Windows XP SP1/SP2. There exist a...

[Full-disclosure] AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption

AOL Nullsoft Winamp IT Module "INMOD.DLL" Remote Heap Memory Corruption by Piotr Bania [email protected] http://www.piotrbania.com Severity: Important - Potencial remote code execution. Software affected: Tested on AOL Nullsoft Winamp v5.33 x86 Feb 13 2007 on Windows XP SP1/SP2. Orginal url:...

[Full-disclosure] AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption

AOL Nullsoft Winamp S3M Module "INMOD.DLL" Remote Heap Memory Corruption by Piotr Bania [email protected] http://www.piotrbania.com Severity: Important - Potencial remote code execution. Software affected: Tested on AOL Nullsoft Winamp v5.33 x86 Feb 13 2007 on Windows XP SP1/SP2. Orginal url:...

NullSoft WinAmp multiple security vulnerabilities

Multiple memory corruptions in different modules...

shoutcast-xss.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +--------------------------------------- - -- - | SaMuschie Research Labs proudly presents . . . +------------------------------------------- -- - - | Application: Nullsoft ShoutcastServer | Version: 1.9.7/Win32 other versions/platforms not tested |...

Cross site scripting

Cross-site scripting XSS vulnerability in the Nullsoft ShoutcastServer 1.9.7 allows remote attackers to inject arbitrary web script or HTML via the top-level URI on the Incoming interface port 8001/tcp, which is not properly handled in the administrator interface when viewing the log file...

CVE-2007-1229

Cross-site scripting XSS vulnerability in the Nullsoft ShoutcastServer 1.9.7 allows remote attackers to inject arbitrary web script or HTML via the top-level URI on the Incoming interface port 8001/tcp, which is not properly handled in the administrator interface when viewing the log file...

CVE-2007-1229

CVE-2007-1229 affects the Nullsoft Shoutcast Server 1.9.7. The vulnerability is a cross-site scripting (XSS) in the web administrator interface when viewing the log file, triggered via the top-level URI on the Incoming interface (port 8001/tcp). The root cause is improper handling of the top-leve...

CVE-2007-1229

Cross-site scripting XSS vulnerability in the Nullsoft ShoutcastServer 1.9.7 allows remote attackers to inject arbitrary web script or HTML via the top-level URI on the Incoming interface port 8001/tcp, which is not properly handled in the administrator interface when viewing the log file...

Nullsoft Shoutcast Server crossite scripting

Crossite scripting with web administration log...