CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
83.9%
Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.
forums.winamp.com/showthread.php?s=&threadid=202007
marc.info/?l=bugtraq&m=110297310503541&w=2
marc.info/?l=full-disclosure&m=110303988101973&w=2
securitytracker.com/alerts/2004/Dec/1012525.html
www.kb.cert.org/vuls/id/372968
www.securityfocus.com/bid/11909
exchange.xforce.ibmcloud.com/vulnerabilities/18466
exchange.xforce.ibmcloud.com/vulnerabilities/18467