PT-2007-5573 · Nullsoft · Winamp

Published

2007-08-17

Updated

2018-10-15

CVE-2007-4392

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Winamp version 5.35

Description The issue allows remote attackers to cause a denial of service, resulting in a program stack overflow and application crash. This can be achieved via an M3U file that recursively includes itself.

Recommendations For Winamp version 5.35, avoid using M3U files that recursively include themselves to prevent the denial of service. As a temporary workaround, consider restricting the use of M3U files until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-4392

Affected Products

Winamp

PT-2007-5573 · Nullsoft · Winamp

CVE-2007-4392

Related Identifiers

Affected Products

References · 13