Winamp Security Vulnerabilities and Issues — Winamp CVE List

Lucene search

NullsoftWinamp

6 matches found

CVE•added 2010/12/02 4:22 p.m.•44 views

CVE-2010-2586

Multiple integer overflows in in_nsv.dll in the in_nsv plugin in Winamp before 5.6 allow remote attackers to execute arbitrary code via a crafted Table of Contents (TOC) in a (1) NSV stream or (2) NSV file that triggers a heap-based buffer overflow.

9.3CVSS7.7AI score0.11189EPSS

CVE•added 2010/12/02 4:22 p.m.•41 views

CVE-2010-4371

Buffer overflow in the in_mod plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vectors related to the comment box.

9.3CVSS7AI score0.08312EPSS

CVE•added 2010/12/02 4:22 p.m.•38 views

CVE-2010-4373

The in_mp4 plugin in Winamp before 5.6 allows remote attackers to cause a denial of service (application crash) via crafted (1) metadata or (2) albumart in an invalid MP4 file.

4.3CVSS6.7AI score0.005EPSS

CVE•added 2010/12/02 4:22 p.m.•32 views

CVE-2010-4374

The in_mkv plugin in Winamp before 5.6 allows remote attackers to cause a denial of service (application crash) via a Matroska Video (MKV) file containing a string with a crafted length.

4.3CVSS6.6AI score0.005EPSS

CVE•added 2010/12/02 4:22 p.m.•31 views

CVE-2010-4372

Integer overflow in the in_nsv plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vectors related to improper allocation of memory for NSV metadata, a different vulnerability than CVE-2010-2586.

9.3CVSS7AI score0.11189EPSS

CVE•added 2010/12/02 4:22 p.m.•29 views

CVE-2010-4370

Multiple integer overflows in the in_midi plugin in Winamp before 5.6 allow remote attackers to execute arbitrary code via a crafted MIDI file that triggers a buffer overflow.

9.3CVSS7.7AI score0.06539EPSS