Описание
Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certain menu option at the time of the attack.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:winamp:nullsoft_winamp:5.32:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04732
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certain menu option at the time of the attack.
EPSS
Процентиль: 89%
0.04732
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-119