CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0708

Multiple buffer overflows in NullSoft Winamp 5.13 and earlier allow remote attackers to execute arbitrary code via (1) an m3u file containing a long URL ending in .wma, (2) a pls file containing a File1 field with a long URL ending in .wma, or (3) an m3u file with a long filename, variants of CVE-2005-3188 and CVE-2006-0476.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.162

EPSS Ranking 94.5%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2006-0708

Nullsoft » Winamp » Version: 5.0

cpe:2.3:a:nullsoft:winamp:5.0
Nullsoft » Winamp » Version: 5.01

cpe:2.3:a:nullsoft:winamp:5.01
Nullsoft » Winamp » Version: 5.02

cpe:2.3:a:nullsoft:winamp:5.02
Nullsoft » Winamp » Version: 5.03

cpe:2.3:a:nullsoft:winamp:5.03
Nullsoft » Winamp » Version: 5.04

cpe:2.3:a:nullsoft:winamp:5.04
Nullsoft » Winamp » Version: 5.05

cpe:2.3:a:nullsoft:winamp:5.05
Nullsoft » Winamp » Version: 5.06

cpe:2.3:a:nullsoft:winamp:5.06
Nullsoft » Winamp » Version: 5.07

cpe:2.3:a:nullsoft:winamp:5.07
Nullsoft » Winamp » Version: 5.08c

cpe:2.3:a:nullsoft:winamp:5.08c
Nullsoft » Winamp » Version: 5.08d

cpe:2.3:a:nullsoft:winamp:5.08d
Nullsoft » Winamp » Version: 5.08e

cpe:2.3:a:nullsoft:winamp:5.08e
Nullsoft » Winamp » Version: 5.09

cpe:2.3:a:nullsoft:winamp:5.09
Nullsoft » Winamp » Version: 5.091

cpe:2.3:a:nullsoft:winamp:5.091
Nullsoft » Winamp » Version: 5.093

cpe:2.3:a:nullsoft:winamp:5.093
Nullsoft » Winamp » Version: 5.094

cpe:2.3:a:nullsoft:winamp:5.094
Nullsoft » Winamp » Version: 5.11

cpe:2.3:a:nullsoft:winamp:5.11
Nullsoft » Winamp » Version: 5.12

cpe:2.3:a:nullsoft:winamp:5.12
Nullsoft » Winamp » Version: 5.13

cpe:2.3:a:nullsoft:winamp:5.13

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0708

Products

Pricing

Contact Us