header-logo
Suggest Exploit
vendor:
Winamp
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Winamp
Affected Version From: NullSoft Winamp
Affected Version To: NullSoft Winamp
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

M3U Playlist File Parser Buffer Overflow

The M3U Playlist file parser in NullSoft Winamp does not perform proper bounds checking with the extension '#EXTINF:'. Therefore, entering a string consisting of over 280 characters in conjunction with this parameter will cause a buffer overflow condition which will either crash the application or allow for arbitrary code to be executed, depending on the data entered.

Mitigation:

Perform proper bounds checking when parsing M3U Playlist files.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/1496/info

The M3U Playlist file parser in NullSoft Winamp does not perform proper bounds checking with the extension "#EXTINF:". Therefore, entering a string consisting of over 280 characters in conjunction with this parameter will cause a buffer overflow condition which will either crash the application or allow for arbitrary code to be executed, depending on the data entered.

Cut and paste the following into a M3U file:

EXTM3U
#EXTINF:<string of of over 280 characters>

Navigation

Suggest Exploit

Services By CQR