Описание
Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:nullsoft:winamp:2.77:*:*:*:*:*:*:*
cpe:2.3:a:nullsoft:winamp:2.78:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.0045
Низкий
2.6 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.
EPSS
Процентиль: 63%
0.0045
Низкий
2.6 Low
CVSS2
Дефекты
NVD-CWE-Other