CVE-2002-2392

Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to 1 wsz and 2 wal files that contain embedded code...

Winamp < 5.34 Malformed 'PLS' File Handling DoS

Binary data 3974.prm...

Winamp < 5.31 Multiple Heap Overflows

Binary data 3800.prm...

CVE-2004-0820

Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file...

Winamp &lt;= 5.04 Skin File (.wsz) Remote Code Execution Exploit

No description provided by source. This 0day exploit is known to be circulating in the wild There is no patch for this vulnerability - Do not use Winamp ! http://www.milw0rm.com/sploits/skinhead.rar 171 Ko index.html ----------- html head /head frameset rows=",1" framespacing="0" border="0"...

Winamp 5.04 - .wsz Skin File Remote Code Execution

Winamp 5.04 - .wsz Skin File Remote Code Execution This 0day exploit is known to be circulating in the wild There is no patch for this vulnerability - Do not use Winamp ! https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/418.rar skinhead.rar - 171 Ko index.html...

Winamp 2.91 lets code execution through MIDI files

Luigi Auriemma Application: Winamp http://www.winamp.com and http://classic.winamp.com Versions: Winamp 2.91 using INMIDI.DLL 3.01 Winamp 3 crashes but I have not found methods to execute code Platforms: Windows Bugs: Code execution through malformed MIDI files Risk: medium/high exploitation has...

IIL Advisory: Winamp 3 &#40;1.0.0.488&#41; XML parser buffer overflow vulnerability

Illegal Instruction Labs Advisory ------------------------------------------------------------------------ Advisory name: Winamp 3 1.0.0.488 XML parser buffer overflow vulnerability Application: Winamp 3 1.0.0.488 Homepage: www.winamp.com Impact: There is a buffer overflow inside XML parser DLL...