PT-2004-3278 · Nullsoft · Winamp

Published

2004-12-31

Updated

2017-07-11

CVE-2004-2384

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: NullSoft Winamp version 5.02

Description: The issue allows remote attackers to cause a denial of service, resulting in the player crashing. This occurs when a file with a long filename is created and opened from the command line, causing the player to crash.

Recommendations: For NullSoft Winamp version 5.02, avoid opening files with long filenames from the command line until a fix is available. As a temporary workaround, consider restricting the length of filenames to prevent the player from crashing.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-2384

Affected Products

Winamp

PT-2004-3278 · Nullsoft · Winamp

CVE-2004-2384

Related Identifiers

Affected Products

References · 7