Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-4694

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2013-4694
Last Modified 20 May 2014 12:07:14
Published 16 Apr 2014 06:55:06
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2013-4694

Summary

Stack-based buffer overflow in gen_jumpex.dll in Winamp before 5.64 Build 3418 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a package with a long Skin directory name. NOTE: a second buffer overflow involving a long GUI Search field to ml_local.dll was also reported. However, since it is only exploitable by the user of the application, this issue would not cross privilege boundaries unless Winamp is running under a highly restricted environment such as a kiosk.

Vulnerable Systems

Application

  • Nullsoft Winamp 0.20a

  • Nullsoft Winamp 0.92

  • Nullsoft Winamp 1.006

  • Nullsoft Winamp 1.90

  • Nullsoft Winamp 2.0

  • Nullsoft Winamp 2.10

  • Nullsoft Winamp 2.6

  • Nullsoft Winamp 2.9

  • Nullsoft Winamp 2.91

  • Nullsoft Winamp 2.92

  • Nullsoft Winamp 2.95

  • Nullsoft Winamp 5.0

  • Nullsoft Winamp 5.01

  • Nullsoft Winamp 5.02

  • Nullsoft Winamp 5.03

  • Nullsoft Winamp 5.04

  • Nullsoft Winamp 5.05

  • Nullsoft Winamp 5.06

  • Nullsoft Winamp 5.07

  • Nullsoft Winamp 5.08c

  • Nullsoft Winamp 5.08d

  • Nullsoft Winamp 5.08e

  • Nullsoft Winamp 5.09

  • Nullsoft Winamp 5.091

  • Nullsoft Winamp 5.093

  • Nullsoft Winamp 5.094

  • Nullsoft Winamp 5.1

  • Nullsoft Winamp 5.11

  • Nullsoft Winamp 5.111

  • Nullsoft Winamp 5.112

  • Nullsoft Winamp 5.12

  • Nullsoft Winamp 5.13

  • Nullsoft Winamp 5.2

  • Nullsoft Winamp 5.21

  • Nullsoft Winamp 5.22

  • Nullsoft Winamp 5.23

  • Nullsoft Winamp 5.24

  • Nullsoft Winamp 5.3

  • Nullsoft Winamp 5.31

  • Nullsoft Winamp 5.32

  • Nullsoft Winamp 5.33

  • Nullsoft Winamp 5.34

  • Nullsoft Winamp 5.35

  • Nullsoft Winamp 5.36

  • Nullsoft Winamp 5.5

  • Nullsoft Winamp 5.51

  • Nullsoft Winamp 5.52

  • Nullsoft Winamp 5.53

  • Nullsoft Winamp 5.531

  • Nullsoft Winamp 5.54

  • Nullsoft Winamp 5.541

  • Nullsoft Winamp 5.55

  • Nullsoft Winamp 5.551

  • Nullsoft Winamp 5.552

  • Nullsoft Winamp 5.56

  • Nullsoft Winamp 5.57

  • Nullsoft Winamp 5.572

  • Nullsoft Winamp 5.58

  • Nullsoft Winamp 5.581

  • Nullsoft Winamp 5.59

  • Nullsoft Winamp 5.61

  • Nullsoft Winamp 5.623

  • Nullsoft Winamp 5.63


References

MISC - https://www.rcesecurity.com/2013/07/winamp-v5-64-fixes-several-code-execution-vulnerabilities-cve-2013-4694-cve-2013-4695

XF - winamp-cve20134694-bo(85399)

BID - 60883

EXPLOIT-DB - 26558

FULLDISC - 20130701 [CVE-2013-4694] WinAmp v5.63 gen_jumpex.dll and ml_local.dll Multiple Buffer Overflows

MISC - http://packetstormsecurity.com/files/122978

MISC - http://packetstormsecurity.com/files/122239/WinAmp-5.63-Buffer-Overflow.html

OSVDB - 94740

OSVDB - 94739

CONFIRM - http://forums.winamp.com/showthread.php?t=364291

SECTRACK - 1030107


Last Updated: 27 May 2016 11:05:01