Winamp Security Vulnerabilities and Issues — Winamp CVE List

Lucene search

NullsoftWinamp

4 matches found

CVE•added 2005/11/16 7:37 a.m.•45 views

CVE-2003-1273

Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters.

2.1CVSS6.6AI score0.00229EPSS

CVE•added 2005/11/16 9:17 p.m.•36 views

CVE-2002-2195

Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response.

5CVSS8.3AI score0.05386EPSS

CVE•added 2005/11/16 7:37 a.m.•35 views

CVE-2003-1272

Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter.

9.3CVSS8AI score0.02501EPSS

CVE•added 2005/11/16 7:37 a.m.•34 views

CVE-2003-1274

Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux.

5CVSS6.6AI score0.00655EPSS