← back
CVE-2004-1396

CVE-2004-1396

EPSS 3.1%
Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://forums.winamp.com/showthread.php?s=&threadid=202007http://marc.info/?l=bugtraq&m=110297310503541&w=2http://marc.info/?l=full-disclosure&m=110303988101973&w=2http://securitytracker.com/alerts/2004/Dec/1012525.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/18466https://exchange.xforce.ibmcloud.com/vulnerabilities/18467http://www.kb.cert.org/vuls/id/372968http://www.securityfocus.com/bid/11909