Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Winamp Subscribe
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-4695 1 Winamp 1 Winamp 2020-01-04 6.8 MEDIUM 7.8 HIGH
Winamp 5.63: Invalid Pointer Dereference leading to Arbitrary Code Execution
CVE-2007-6403 1 Winamp 1 Nullsoft Winamp 2018-10-15 6.8 MEDIUM N/A
Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certain menu option at the time of the attack.
CVE-2008-0065 1 Winamp 1 Nullsoft Winamp 2017-08-07 10.0 HIGH N/A
Multiple stack-based buffer overflows in in_mp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote attackers to execute arbitrary code via a long (1) artist or (2) name tag in Ultravox streaming metadata, related to construction of stream titles.
CVE-2017-10726 1 Winamp 1 Winamp 2017-07-21 6.8 MEDIUM 7.8 HIGH
Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address may be used as a return value starting at f263!GetWinamp5SystemComponent+0x0000000000001951."
CVE-2017-10727 1 Winamp 1 Winamp 2017-07-21 6.8 MEDIUM 7.8 HIGH
Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Branch Selection starting at in_mp3!DeleteAudioDecoder+0x000000000000762f."
CVE-2017-10728 1 Winamp 1 Winamp 2017-07-21 6.8 MEDIUM 7.8 HIGH
Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Error Code (0xe06d7363) starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
CVE-2017-10725 1 Winamp 1 Winamp 2017-07-07 4.4 MEDIUM 7.3 HIGH
Winamp 5.666 Build 3516(x86) allows attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Code Flow starting at in_flv!winampGetInModule2+0x00000000000009a8."