Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3188

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2005-3188
Last Modified 05 Sep 2008 04:53:41
Published 31 Dec 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-3188

Summary

Buffer overflow in Nullsoft Winamp 5.094 allows remote attackers to execute arbitrary code via (1) an m3u file containing a long line ending in .wma or (2) a pls file containing a long File1 value ending in .wma, a different vulnerability than CVE-2006-0476.

Vulnerable Systems

Application

  • Nullsoft Winamp 5.094


References

XF - winamp-wma-ext-bo(24417)

OSVDB - 22975

IDEFENSE - 20060201 Winamp m3u/pls .WMA Extension Buffer Overflow Vulnerability

SECTRACK - 1015565

BID - 16462

SECTRACK - 1015621

SREASON - 397


Last Updated: 27 May 2016 10:40:50