Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4857

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-4857
Last Modified 13 Aug 2012 11:32:43
Published 16 Dec 2011 02:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4857

Summary

Heap-based buffer overflow in the in_mod.dll plugin in Winamp before 5.623 allows remote attackers to execute arbitrary code via crafted song message data in an Impulse Tracker (IT) file. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Nullsoft Winamp 0.20a

  • Nullsoft Winamp 0.92

  • Nullsoft Winamp 1.006

  • Nullsoft Winamp 1.90

  • Nullsoft Winamp 2.0

  • Nullsoft Winamp 2.10

  • Nullsoft Winamp 2.6

  • Nullsoft Winamp 2.9

  • Nullsoft Winamp 2.91

  • Nullsoft Winamp 2.92

  • Nullsoft Winamp 2.95

  • Nullsoft Winamp 5.0

  • Nullsoft Winamp 5.01

  • Nullsoft Winamp 5.02

  • Nullsoft Winamp 5.03

  • Nullsoft Winamp 5.04

  • Nullsoft Winamp 5.05

  • Nullsoft Winamp 5.06

  • Nullsoft Winamp 5.07

  • Nullsoft Winamp 5.08c

  • Nullsoft Winamp 5.08d

  • Nullsoft Winamp 5.08e

  • Nullsoft Winamp 5.09

  • Nullsoft Winamp 5.091

  • Nullsoft Winamp 5.093

  • Nullsoft Winamp 5.094

  • Nullsoft Winamp 5.1

  • Nullsoft Winamp 5.11

  • Nullsoft Winamp 5.111

  • Nullsoft Winamp 5.112

  • Nullsoft Winamp 5.12

  • Nullsoft Winamp 5.13

  • Nullsoft Winamp 5.2

  • Nullsoft Winamp 5.21

  • Nullsoft Winamp 5.22

  • Nullsoft Winamp 5.23

  • Nullsoft Winamp 5.24

  • Nullsoft Winamp 5.3

  • Nullsoft Winamp 5.31

  • Nullsoft Winamp 5.32

  • Nullsoft Winamp 5.33

  • Nullsoft Winamp 5.34

  • Nullsoft Winamp 5.35

  • Nullsoft Winamp 5.5

  • Nullsoft Winamp 5.51

  • Nullsoft Winamp 5.52

  • Nullsoft Winamp 5.53

  • Nullsoft Winamp 5.531

  • Nullsoft Winamp 5.54

  • Nullsoft Winamp 5.541

  • Nullsoft Winamp 5.55

  • Nullsoft Winamp 5.551

  • Nullsoft Winamp 5.552

  • Nullsoft Winamp 5.56

  • Nullsoft Winamp 5.57

  • Nullsoft Winamp 5.572

  • Nullsoft Winamp 5.58

  • Nullsoft Winamp 5.581

  • Nullsoft Winamp 5.6

  • Nullsoft Winamp 5.622


References

SECUNIA - 46882

CONFIRM - http://forums.winamp.com/showthread.php?t=332010

XF - winamp-it-bo(72054)


Last Updated: 27 May 2016 10:57:56