CVE-2006-0720

EPSS 10.3%

Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file.

Productos afectados

n/a · n/a

PoCs públicas encontradas — 1

exploitdbwww.exploit-db.com/exploits/26245no verificado

⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://forums.winamp.com/showthread.php?threadid=238648 http://securityreason.com/securityalert/476 http://securitytracker.com/id?1015675 https://exchange.xforce.ibmcloud.com/vulnerabilities/24740 http://www.nsfocus.com/english/homepage/research/0601.htm http://www.securityfocus.com/archive/1/425888/100/0/threaded http://www.securityfocus.com/bid/16785