Heap Memory Corruption Vulnerability in Winamp by Nullsoft
CVE-2012-3890

Currently unrated

Key Information:

Vendor: Nullsoft
Status: Winamp
Vendor: CVE Published:; 11 July 2012

What is CVE-2012-3890?

The in_mod plugin in Winamp versions prior to 5.63 is susceptible to a vulnerability that allows remote attackers to trigger a denial of service through the use of specially crafted .IT files. This could lead to heap memory corruption, potentially affecting the application’s stability and availability.

References

http://forums.winamp.com/showthread.php?t=345684

x_refsource_CONFIRM

http://secunia.com/advisories/46624

third-party-advisoryx_refsource_SECUNIA

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 11, 2012
Vulnerability Reserved
Jul 10, 2012