Secunia Logo  


Secunia PSI WorldMap
 
CVE Reference: CVE-2006-0720
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2006-0720

Description:
Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/24740

VULNWATCH

ST
  1015675

SREASON
  http://securityreason.com/securityalert/476

MISC
  http://www.nsfocus.com/english/homepage/research/0601.htm

CONFIRM
  http://forums.winamp.com/showthread.php?threadid=238648

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/425888/100/0/threaded

BID
  16785


Return to the previous page.