Vulnerability Details CVE-2000-0624
Buffer overflow in Winamp 2.64 and earlier allows remote attackers to execute arbitrary commands via a long #EXTINF: extension in the M3U playlist.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.071
EPSS Ranking 91.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0289.html
- http://www.securityfocus.com/bid/1496
- http://www.winamp.com/getwinamp/newfeatures.jhtml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4956
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0289.html
- http://www.securityfocus.com/bid/1496
- http://www.winamp.com/getwinamp/newfeatures.jhtml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4956
Products affected by CVE-2000-0624
-
cpe:2.3:a:nullsoft:winamp:0.20a
-
cpe:2.3:a:nullsoft:winamp:0.92
-
cpe:2.3:a:nullsoft:winamp:1.006
-
cpe:2.3:a:nullsoft:winamp:1.90
-
cpe:2.3:a:nullsoft:winamp:2.0
-
cpe:2.3:a:nullsoft:winamp:2.10
-
cpe:2.3:a:nullsoft:winamp:2.6
-
cpe:2.3:a:nullsoft:winamp:2.9