Vulnerabilities > Nullsoft > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-09-17 | CVE-2003-0765 | Remote Security vulnerability in Winamp The IN_MIDI.DLL plugin 3.01 and earlier, as used in Winamp 2.91, allows remote attackers to execute arbitrary code via a MIDI file with a large "Track data size" value. | 7.5 |
| 2003-04-02 | CVE-2002-1524 | Buffer Overflow vulnerability in Nullsoft Winamp 3.0 Buffer overflow in XML parser in wsabi.dll of Winamp 3 (1.0.0.488) allows remote attackers to execute arbitrary code via a skin file (.wal) with a long include file tag. | 7.5 |
| 2002-12-26 | CVE-2002-1177 | Buffer Overrun vulnerability in Nullsoft Winamp 3.0 Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote attackers to execute arbitrary code via an MP3 file containing a long (1) Artist or (2) Album ID3v2 tag. | 7.5 |
| 2002-12-26 | CVE-2002-1176 | Remote Security vulnerability in Nullsoft Winamp 2.81 Buffer overflow in Winamp 2.81 allows remote attackers to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file. | 7.5 |
| 2002-10-04 | CVE-2002-0907 | Remote Buffer Overflow vulnerability in Nullsoft Shoutcast Server 1.8.9 Buffer overflow in SHOUTcast 1.8.9 and other versions before 1.8.12 allows a remote authenticated DJ to execute arbitrary code on the server via a long value in a header whose name begins with "icy-". | 7.5 |
| 2002-07-03 | CVE-2002-0547 | Buffer Overflow vulnerability in Nullsoft Winamp Minibrowser ID3v2 Buffer overflow in the mini-browser for Winamp 2.79 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the title field of an ID3v2 tag. | 7.5 |
| 2002-07-03 | CVE-2002-0546 | Unspecified vulnerability in Nullsoft Winamp 2.78/2.79 Cross-site scripting vulnerability in the mini-browser for Winamp 2.78 and 2.79 allows remote attackers to execute script via an ID3v1 or ID3v2 tag in an MP3 file. | 7.5 |
| 2002-05-16 | CVE-2002-0199 | Denial Of Service vulnerability in Nullsoft Shoutcast Server 1.8.3 Buffer overflow in admin.cgi for Nullsoft Shoutcast Server 1.8.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an argument with a large number of backslashes. | 7.5 |
| 2001-06-27 | CVE-2001-0490 | Remote Security vulnerability in Winamp 2.6X/2.7X Buffer overflow in WINAMP 2.6x and 2.7x allows attackers to execute arbitrary code via a long string in an AIP file. | 7.5 |
| 2000-07-20 | CVE-2000-0624 | Unspecified vulnerability in Nullsoft Winamp Buffer overflow in Winamp 2.64 and earlier allows remote attackers to execute arbitrary commands via a long #EXTINF: extension in the M3U playlist. | 7.5 |