Secunia
Login
|
|
CVE Reference: CVE-2006-0720 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-0720 |
|
|
Description: Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/24740 VULNWATCH ST 1015675 SREASON http://securityreason.com/securityalert/476 MISC http://www.nsfocus.com/english/homepage/research/0601.htm CONFIRM http://forums.winamp.com/showthread.php?threadid=238648 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/425888/100/0/threaded BID 16785 |
|
| Return to the previous page. |
