CVE Reference: CVE-2012-4045

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-4045

Description:
Multiple heap-based buffer overflows in bmp.w5s in Winamp before 5.63 build 3235 allow remote attackers to execute arbitrary code via the (1) strf chunk in BI_RGB or (2) UYVY video data in an AVI file, or (3) decompressed TechSmith Screen Capture Codec (TSCC) data in an AVI file.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA46624

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15335

CONFIRM
  http://forums.winamp.com/showthread.php?t=345684

BID
  54131


Return to the previous page.