exploitDog

GHSA-79wq-4p6w-9m3x

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory corruption.

The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory corruption.

Ссылки

EPSS

Процентиль: 94%

0.15636

Средний

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2007-1922

nvd

почти 19 лет назад

The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory corruption.

EPSS

Процентиль: 94%

0.15636

Средний

CVE ID

Дефекты

CWE-20