Описание
Multiple integer overflows in the jpeg.w5s and png.w5s filters in Winamp before 5.57 allow remote attackers to execute arbitrary code via malformed (1) JPEG or (2) PNG data in an MP3 file.
Multiple integer overflows in the jpeg.w5s and png.w5s filters in Winamp before 5.57 allow remote attackers to execute arbitrary code via malformed (1) JPEG or (2) PNG data in an MP3 file.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-4356
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15743
- http://forums.winamp.com/showthread.php?threadid=315355
- http://www.securityfocus.com/archive/1/508532/100/0/threaded
- http://www.securityfocus.com/bid/37387
- http://www.vupen.com/english/advisories/2009/3576
- http://www.vupen.com/exploits/Winamp_png_w5s_PNG_Data_Processing_Integer_Overflow_PoC_3576274.php
EPSS
Процентиль: 90%
0.0517
Низкий
CVE ID
Связанные уязвимости
nvd
около 16 лет назад
Multiple integer overflows in the jpeg.w5s and png.w5s filters in Winamp before 5.57 allow remote attackers to execute arbitrary code via malformed (1) JPEG or (2) PNG data in an MP3 file.
EPSS
Процентиль: 90%
0.0517
Низкий