Nullsoft : Security Vulnerabilities, CVEs, Published In December 2003
Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux.
Max CVSS
5.0
EPSS Score
0.29%
Published
2003-12-31
Updated
2017-07-11
Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters.
Max CVSS
2.1
EPSS Score
0.34%
Published
2003-12-31
Updated
2017-07-11
Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a long path in a file: argument to the Playstring parameter.
Max CVSS
9.3
EPSS Score
3.02%
Published
2003-12-31
Updated
2017-07-11
Buffer overflow in NullSoft Shoutcast Server 1.9.2 allows local users to cause a denial of service via (1) icy-name followed by a long server name or (2) icy-url followed by a long URL.
Max CVSS
2.1
EPSS Score
0.06%
Published
2003-12-31
Updated
2017-07-11
4 vulnerabilities found