Описание
Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file.
Ссылки
- Patch
- Patch
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:nullsoft:winamp:5.12:*:*:*:*:*:*:*
cpe:2.3:a:nullsoft:winamp:5.13:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.13908
Средний
7.6 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file.
EPSS
Процентиль: 94%
0.13908
Средний
7.6 High
CVSS2
Дефекты
NVD-CWE-Other