Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-6403 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Nullsoft Winamp

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources

Severity

6.8MEDIUMNVD

EPSS

4.7%

top 10.59%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Winamp Nullsoft Winamp

Timeline

PublishedDec 17

Latest updateMay 1

Description

Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certain menu option at the time of the attack.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

▶NVDwinamp/nullsoft_winamp5.32

🔴Vulnerability Details

GHSA

GHSA-h6gg-2r3h-ppgp: Stack-based buffer overflow in Nullsoft Winamp 5↗2022-05-01

▶

💥Exploits & PoCs

Exploit-DB

NullSoft Winamp 5.32 - .MP4 Tags Stack Overflow↗2007-12-08

▶