Vulnerabilities > CVE-2006-0708 - Denial of Service vulnerability in Nullsoft Winamp M3U File
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple buffer overflows in NullSoft Winamp 5.13 and earlier allow remote attackers to execute arbitrary code via (1) an m3u file containing a long URL ending in .wma, (2) a pls file containing a File1 field with a long URL ending in .wma, or (3) an m3u file with a long filename, variants of CVE-2005-3188 and CVE-2006-0476.
Vulnerable Configurations
Nessus
NASL family | Windows |
NASL id | WINAMP_52.NASL |
description | The remote host is using Winamp, a popular media player for Windows. The version of Winamp installed on the remote Windows host reportedly crashes if the user tries to open an M3U file with a long filename. In addition, it reportedly contains a buffer overflow flaw that can be exploited using a specially crafted M3U file to either crash the application or possibly even execute arbitrary code remotely. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 20973 |
published | 2006-02-25 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/20973 |
title | Winamp < 5.2 Multiple Vulnerabilities |
code |
|
References
- http://forums.winamp.com/showthread.php?s=&threadid=238648
- http://securityreason.com/securityalert/444
- http://securityreason.com/securityalert/492
- http://securitytracker.com/id?1015621
- http://www.securityfocus.com/archive/1/424903/100/0/threaded
- http://www.securityfocus.com/bid/16623
- http://www.vupen.com/english/advisories/2006/0613
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24739
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24740
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24741