CVE-2007-1922

Name of the Vulnerable Software and Affected Versions Winamp version 5.33

Description The issue allows remote attackers to execute arbitrary code via crafted files. Specifically, it affects the Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN MOD.DLL, where integer values in (1) .IT or (2) .S3M files are used as memory offsets, leading to memory corruption.

Recommendations For Winamp version 5.33, consider disabling the use of .IT and .S3M modules until a patch is available to prevent potential exploitation. Restrict access to these modules to minimize the risk of arbitrary code execution. Avoid using the affected IN MOD.DLL to handle .IT and .S3M files until the issue is resolved.