Vulnerabilities > Winamp
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-27 | CVE-2013-4695 | Release of Invalid Pointer or Reference vulnerability in Winamp 5.63 Winamp 5.63: Invalid Pointer Dereference leading to Arbitrary Code Execution | 6.8 |
| 2017-07-05 | CVE-2017-10728 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Winamp 5.666 Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Error Code (0xe06d7363) starting at wow64!Wow64NotifyDebugger+0x000000000000001d." | 6.8 |
| 2017-07-05 | CVE-2017-10727 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Winamp 5.666 Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Branch Selection starting at in_mp3!DeleteAudioDecoder+0x000000000000762f." | 6.8 |
| 2017-07-05 | CVE-2017-10726 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Winamp 5.666 Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address may be used as a return value starting at f263!GetWinamp5SystemComponent+0x0000000000001951." | 6.8 |
| 2017-07-05 | CVE-2017-10725 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Winamp 5.666 Winamp 5.666 Build 3516(x86) allows attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Code Flow starting at in_flv!winampGetInModule2+0x00000000000009a8." | 4.4 |
| 2008-01-22 | CVE-2008-0065 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Winamp Nullsoft Winamp 5.21/5.5/5.51 Multiple stack-based buffer overflows in in_mp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote attackers to execute arbitrary code via a long (1) artist or (2) name tag in Ultravox streaming metadata, related to construction of stream titles. | 10.0 |
| 2007-12-17 | CVE-2007-6403 | Buffer Errors vulnerability in Winamp Nullsoft Winamp 5.32 Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. | 6.8 |