Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4392

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-4392
Last Modified 13 Aug 2012 10:27:38
Published 17 Aug 2007 06:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4392

Summary

Winamp 5.35 allows remote attackers to cause a denial of service (program stack overflow and application crash) via an M3U file that recursively includes itself.

Vulnerable Systems

Application

  • Nullsoft Winamp 5.35


References

BUGTRAQ - 20070801 Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion Stack Overflow

BUGTRAQ - 20070801 Re: Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion DoS Vulnerability

BUGTRAQ - 20070731 Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion DoS Vulnerability

BUGTRAQ - 20070731 [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion DoS Vulnerability

MISC - http://morph3us.org/advisories/20070730-winamp-5.35.txt

SREASON - 3040


Last Updated: 27 May 2016 10:45:50