Lucene search

MitreCVE-2007-2180

HistoryApr 24, 2007 - 5:19 p.m.

CVE-2007-2180

2007-04-2417:19:00

mitre

web.nvd.nist.gov

cve-2007-2180

buffer overflow

nullsoft winamp 5.3

denial of service

remote attackers

wmv file

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.01

Percentile

83.7%

JSON

Buffer overflow in Nullsoft Winamp 5.3 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted WMV file.

Affected configurations

Nvd

Node

nullsoftwinampMatch5.3

VendorProductVersionCPE
nullsoftwinamp5.3cpe:2.3:a:nullsoft:winamp:5.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
nullsoft	winamp	5.3	cpe:2.3:a:nullsoft:winamp:5.3:::::::*

References

securityreason.com/securityalert/2601

www.securityfocus.com/archive/1/466291/100/0/threaded

www.securityfocus.com/bid/23568

exchange.xforce.ibmcloud.com/vulnerabilities/33764

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15697

www.exploit-db.com/exploits/3768

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.01

Percentile

83.7%

JSON

Related for CVE-2007-2180