CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
75.2%
The in_mkv plugin in Winamp before 5.6 allows remote attackers to cause a denial of service (application crash) via a Matroska Video (MKV) file containing a string with a crafted length.
Vendor | Product | Version | CPE |
---|---|---|---|
nullsoft | winamp | * | cpe:2.3:a:nullsoft:winamp:*:*:*:*:*:*:*:* |
nullsoft | winamp | 0.20a | cpe:2.3:a:nullsoft:winamp:0.20a:*:*:*:*:*:*:* |
nullsoft | winamp | 0.92 | cpe:2.3:a:nullsoft:winamp:0.92:*:*:*:*:*:*:* |
nullsoft | winamp | 1.006 | cpe:2.3:a:nullsoft:winamp:1.006:*:*:*:*:*:*:* |
nullsoft | winamp | 1.90 | cpe:2.3:a:nullsoft:winamp:1.90:*:*:*:*:*:*:* |
nullsoft | winamp | 2.0 | cpe:2.3:a:nullsoft:winamp:2.0:*:*:*:*:*:*:* |
nullsoft | winamp | 2.6 | cpe:2.3:a:nullsoft:winamp:2.6:*:*:*:*:*:*:* |
nullsoft | winamp | 2.9 | cpe:2.3:a:nullsoft:winamp:2.9:*:*:*:*:*:*:* |
nullsoft | winamp | 2.10 | cpe:2.3:a:nullsoft:winamp:2.10:*:*:*:*:*:*:* |
nullsoft | winamp | 2.91 | cpe:2.3:a:nullsoft:winamp:2.91:*:*:*:*:*:*:* |