CVE-2006-5567 - Multiple heap-based buffer overflows in AOL Nullsoft WinAmp before 5.31 allow user-assisted remote a

CVE-2006-5567

Summary

Multiple heap-based buffer overflows in AOL Nullsoft WinAmp before 5.31 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) ultravox-max-msg header to the Ultravox protocol handler or (2) unspecified Lyrics3 tags. Upgrade to 5.31

References

Vulnerable Configurations

cpe:2.3:a:nullsoft:winamp:5.3:*:*:*:*:*:*:*
cpe:2.3:a:nullsoft:winamp:5.3:*:*:*:*:*:*:*
cpe:2.3:a:nullsoft:winamp:5.24:*:*:*:*:*:*:*
cpe:2.3:a:nullsoft:winamp:5.24:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 11-10-2017 - 01:31)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

oval via4

accepted

2014-04-07T04:01:59.221-04:00

class

vulnerability

contributors

name Shane Shaffer
organization G2, Inc.
name Shane Shaffer
organization G2, Inc.
name Maria Mikhno
organization ALTX-SOFT

definition_extensions

comment	Winamp is installed
oval	oval:org.mitre.oval:def:6897

description

family

windows

oval:org.mitre.oval:def:15686

status

accepted

submitted

2012-07-20T09:18:28.692-04:00

title

Multiple heap-based buffer overflows in AOL Nullsoft WinAmp before 5.31

version

refmap via4

bid	20744
cert-vn	VU#449092
confirm	http://www.winamp.com/player/version_history.php#5.31
idefense	20061025 AOL Nullsoft Winamp Lyrics3 v2.00 tags Heap Overflow Vulnerability 20061025 AOL Nullsoft Winamp Ultravox 'ultravox-max-msg' Header Heap Overflow Vulnerability
sectrack	1017119 1017120
secunia	22580
vupen	ADV-2006-4196
xf	winamp-lyrics3-bo(29807) winamp-ultravox-bo(29804)

Last major update

11-10-2017 - 01:31

Published

27-10-2006 - 16:07

Last modified

11-10-2017 - 01:31