Heap-based Buffer Overflow in Winamp's VP6 Codec
CVE-2010-1523

Currently unrated

Key Information:

Vendor: Nullsoft
Status: Winamp
Vendor: CVE Published:; 6 November 2010

What is CVE-2010-1523?

Multiple heap-based buffer overflows exist in the VP6 codec within Winamp, which can be triggered by specially crafted VP6 video files or streams. Exploiting these vulnerabilities may allow attackers to execute arbitrary code on the affected system, posing significant risks to users running vulnerable versions of the software.

References

http://www.securityfocus.com/bid/44466

vdb-entryx_refsource_BID

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/archive/1/514484/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 6, 2010
Vulnerability Reserved
Apr 26, 2010

Nullsoft

What is CVE-2010-1523?

References

Timeline