CVE-2007-4392
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
88.6%
Winamp 5.35 allows remote attackers to cause a denial of service (program stack overflow and application crash) via an M3U file that recursively includes itself.
Affected configurations
References
morph3us.org/advisories/20070730-winamp-5.35.txt
securityreason.com/securityalert/3040
www.securityfocus.com/archive/1/475161/100/200/threaded
www.securityfocus.com/archive/1/475183/100/200/threaded
www.securityfocus.com/archive/1/475260/100/200/threaded
www.securityfocus.com/archive/1/475489/100/200/threaded
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15504
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
88.6%