cbcvebase.
CVE-2004-1896
published 2004-12-31

CVE-2004-1896: Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 through 5.02 allows remote attackers to execute arbitrary code via a Fasttracker 2 (.xm) mod…

PriorityP431high7.6CVSS 2.0
AVNACHAuNCCICAC
EPSS
5.15%
91.4th percentile
Heap-based buffer overflow in in_mod.dll in Nullsoft Winamp 2.91 through 5.02 allows remote attackers to execute arbitrary code via a Fasttracker 2 (.xm) mod media file.

Affected

5 ranges
VendorProductVersion rangeFixed in
nullsoftwinamp
nullsoftwinamp
nullsoftwinamp
nullsoftwinamp
nullsoftwinamp
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.