Lucene search

[email protected]NVD:CVE-2002-2195

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2195

2002-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

7.9

Confidence

High

EPSS

0.021

Percentile

89.5%

JSON

Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response.

Affected configurations

Nvd

Node

nullsoftwinampMatch2.60lite

nullsoftwinampMatch2.61full

nullsoftwinampMatch2.62standard

nullsoftwinampMatch2.64standard

nullsoftwinampMatch2.65

nullsoftwinampMatch2.70

nullsoftwinampMatch2.70full

nullsoftwinampMatch2.71

nullsoftwinampMatch2.72

nullsoftwinampMatch2.73

nullsoftwinampMatch2.73full

nullsoftwinampMatch2.74

nullsoftwinampMatch2.75

nullsoftwinampMatch2.76

nullsoftwinampMatch2.78

nullsoftwinampMatch2.79

nullsoftwinampMatch2.80

VendorProductVersionCPE
nullsoftwinamp2.60cpe:2.3:a:nullsoft:winamp:2.60:*:lite:*:*:*:*:*
nullsoftwinamp2.61cpe:2.3:a:nullsoft:winamp:2.61:*:full:*:*:*:*:*
nullsoftwinamp2.62cpe:2.3:a:nullsoft:winamp:2.62:*:standard:*:*:*:*:*
nullsoftwinamp2.64cpe:2.3:a:nullsoft:winamp:2.64:*:standard:*:*:*:*:*
nullsoftwinamp2.65cpe:2.3:a:nullsoft:winamp:2.65:*:*:*:*:*:*:*
nullsoftwinamp2.70cpe:2.3:a:nullsoft:winamp:2.70:*:*:*:*:*:*:*
nullsoftwinamp2.70cpe:2.3:a:nullsoft:winamp:2.70:*:full:*:*:*:*:*
nullsoftwinamp2.71cpe:2.3:a:nullsoft:winamp:2.71:*:*:*:*:*:*:*
nullsoftwinamp2.72cpe:2.3:a:nullsoft:winamp:2.72:*:*:*:*:*:*:*
nullsoftwinamp2.73cpe:2.3:a:nullsoft:winamp:2.73:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
nullsoft	winamp	2.60	cpe:2.3:a:nullsoft:winamp:2.60::lite:::::
nullsoft	winamp	2.61	cpe:2.3:a:nullsoft:winamp:2.61::full:::::
nullsoft	winamp	2.62	cpe:2.3:a:nullsoft:winamp:2.62::standard:::::
nullsoft	winamp	2.64	cpe:2.3:a:nullsoft:winamp:2.64::standard:::::
nullsoft	winamp	2.65	cpe:2.3:a:nullsoft:winamp:2.65:::::::*
nullsoft	winamp	2.70	cpe:2.3:a:nullsoft:winamp:2.70:::::::*
nullsoft	winamp	2.70	cpe:2.3:a:nullsoft:winamp:2.70::full:::::
nullsoft	winamp	2.71	cpe:2.3:a:nullsoft:winamp:2.71:::::::*
nullsoft	winamp	2.72	cpe:2.3:a:nullsoft:winamp:2.72:::::::*
nullsoft	winamp	2.73	cpe:2.3:a:nullsoft:winamp:2.73:::::::*

Rows per page:

1-10 of 171

References

online.securityfocus.com/archive/1/280786

www.iss.net/security_center/static/9488.php

www.securityfocus.com/bid/5170

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

7.9

Confidence

High

EPSS

0.021

Percentile

89.5%

JSON

Related for NVD:CVE-2002-2195

cvelist1 exploitdb1 cve1