CVE-2000-0624
published 2000-07-20CVE-2000-0624: Buffer overflow in Winamp 2.64 and earlier allows remote attackers to execute arbitrary commands via a long #EXTINF: extension in the M3U playlist.
PriorityP333high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
3.96%
89.1th percentile
Buffer overflow in Winamp 2.64 and earlier allows remote attackers to execute arbitrary commands via a long #EXTINF: extension in the M3U playlist.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nullsoft | winamp | <= 2.64 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft SQL Server 2000 - Password Encrypt procedure Buffer Overflow
exploitdb·2002-06-14
CVE-2002-0624 Microsoft SQL Server 2000 - Password Encrypt procedure Buffer Overflow
Microsoft SQL Server 2000 - Password Encrypt procedure Buffer Overflow
---
source: https://www.securityfocus.com/bid/5014/info
A buffer overflow vulnerability has been reported in SQL Server 2000. The vunerability is a result of an unchecked buffer when using the password encrypt procedure. This procedure is used by administrators to provides support for the storage of SQL Server Authentication credentials.
The overrun condition is due to an unbounded data copy operation that occurs when processing the procedure arguments. Attackers may exploit this vulnerability by invoking the password encrypt procedure with excessive input.
SELECT pwdencrypt(REPLICATE('A',353))
Exploit-DB
NullSoft Winamp 2.64 - '.m3u' Playlist Buffer Overflow
exploitdb·2001-01-17
CVE-2000-0624 NullSoft Winamp 2.64 - '.m3u' Playlist Buffer Overflow
NullSoft Winamp 2.64 - '.m3u' Playlist Buffer Overflow
---
source: https://www.securityfocus.com/bid/1496/info
The M3U Playlist file parser in NullSoft Winamp does not perform proper bounds checking with the extension "#EXTINF:". Therefore, entering a string consisting of over 280 characters in conjunction with this parameter will cause a buffer overflow condition which will either crash the application or allow for arbitrary code to be executed, depending on the data entered.
Cut and paste the following into a M3U file:
EXTM3U
#EXTINF:
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2000-07/0289.htmlhttp://www.securityfocus.com/bid/1496http://www.winamp.com/getwinamp/newfeatures.jhtmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/4956http://archives.neohapsis.com/archives/bugtraq/2000-07/0289.htmlhttp://www.securityfocus.com/bid/1496http://www.winamp.com/getwinamp/newfeatures.jhtmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/4956
2000-07-20
Published