Integer Overflow Vulnerability in Winamp's in_nsv Plugin by Nullsoft
CVE-2010-4372

Currently unrated

Key Information:

Vendor: Nullsoft
Status: Winamp
Vendor: CVE Published:; 2 December 2010

What is CVE-2010-4372?

An integer overflow vulnerability exists in the in_nsv plugin of Winamp, affecting versions prior to 5.6. This flaw enables remote attackers to exploit improper memory allocation for NSV metadata, potentially leading to undefined behavior or further exploitation of the affected system. This vulnerability is distinct from another listed issue (CVE-2010-2586), highlighting the importance of robust memory management practices.

References

http://forums.winamp.com/showthread.php?threadid=159785

x_refsource_CONFIRM

http://forums.winamp.com/showthread.php?t=324322

x_refsource_CONFIRM

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 2, 2010
Vulnerability Reserved
Dec 2, 2010