CVE-2004-1396

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 2.6

EPSS Низкий

Описание

Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.

Ссылки

http://forums.winamp.com/showthread.php?s=&threadid=202007
Exploit
http://marc.info/?l=bugtraq&m=110297310503541&w=2
http://marc.info/?l=full-disclosure&m=110303988101973&w=2
http://securitytracker.com/alerts/2004/Dec/1012525.html
http://www.kb.cert.org/vuls/id/372968
US Government Resource
http://www.securityfocus.com/bid/11909
https://exchange.xforce.ibmcloud.com/vulnerabilities/18466
https://exchange.xforce.ibmcloud.com/vulnerabilities/18467
http://forums.winamp.com/showthread.php?s=&threadid=202007
Exploit
http://marc.info/?l=bugtraq&m=110297310503541&w=2
http://marc.info/?l=full-disclosure&m=110303988101973&w=2
http://securitytracker.com/alerts/2004/Dec/1012525.html
http://www.kb.cert.org/vuls/id/372968
US Government Resource
http://www.securityfocus.com/bid/11909
https://exchange.xforce.ibmcloud.com/vulnerabilities/18466
https://exchange.xforce.ibmcloud.com/vulnerabilities/18467

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nullsoft:winamp:5.07:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02613

Низкий

2.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-3rr5-mjc8-9763

github

больше 3 лет назад