Nullsoft · Winamp · CVE-2006-3228
**Name of the Vulnerable Software and Affected Versions**
WinAmp versions 2.90 through 5.23
**Description**
A buffer overflow issue exists, allowing remote attackers to execute arbitrary code via a crafted .mid (MIDI) file. This is due to a problem in the in midi.dll component.
**Recommendations**
For versions 2.90 through 5.23, update to a version that contains a fix for this issue to prevent exploitation.