Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-4694Improper Restriction of Operations within the Bounds of a Memory Buffer in Winamp

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents3 sources
Severity
7.5HIGHNVD
EPSS
40.7%
top 2.62%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Nullsoft Winamp
Timeline
PublishedApr 16
Latest updateMay 17

Description

Stack-based buffer overflow in gen_jumpex.dll in Winamp before 5.64 Build 3418 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a package with a long Skin directory name. NOTE: a second buffer overflow involving a long GUI Search field to ml_local.dll was also reported. However, since it is only exploitable by the user of the application, this issue would not cross privilege boundaries unless Winamp is running under a highly restricted environm

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDnullsoft/winamp5.63+62

Patches

Patch: forums.winamp.comPatch: forums.winamp.com

🔴Vulnerability Details

1
GHSA
GHSA-3p42-8gxw-6cw4: Stack-based buffer overflow in gen_jumpex2022-05-17

💥Exploits & PoCs

2
Exploit-DB
Winamp 5.63 - 'winamp.ini' Local Overflow2013-08-26
Exploit-DB
Winamp 5.63 - Stack Buffer Overflow2013-07-02