Heap-Based Buffer Overflow in Winamp Affects Multiple Versions
CVE-2012-4045

Currently unrated

Key Information:

Vendor

Nullsoft

Status
Winamp
Vendor
CVE Published:
22 July 2012

What is CVE-2012-4045?

Multiple heap-based buffer overflows exist in the bmp.w5s component of Winamp prior to version 5.63 build 3235. These vulnerabilities enable remote attackers to execute arbitrary code by crafting specific AVI files containing strf chunks in BI_RGB format, UYVY video data, or decompressed TechSmith Screen Capture Codec (TSCC) data. Successful exploitation can lead to unauthorized access and control over affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
http://forums.winamp.com/showthread.php?t=345684
x_refsource_CONFIRM
http://secunia.com/advisories/46624
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.