CVE-2009-3996
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2009-3996
Status
Candidate
Description
Heap-based buffer overflow in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp before 5.57, and libmikmod 3.1.12, might allow remote attackers to execute arbitrary code via an Ultratracker file.
Severity
High
CVSS score
9,3
CVSS vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Phase
Assigned (06.01.2011)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3996
References
BID :
37374
BUGTRAQ :
20091217 Secunia Research: Winamp Ultratracker File Parsing Buffer Overflow
CONFIRM :
http://forums.winamp.com/showthread.php?threadid=3...
MANDRIVA :
MDVSA-2010:151
MISC :
http://secunia.com/secunia_research/2009-55/
MISC :
http://secunia.com/secunia_research/2009-56/
SECUNIA :
37495
SUSE :
SUSE-SR:2010:011
VUPEN :
ADV-2009-3575
VUPEN :
ADV-2010-1107
SecurityVulns:
Nullsoft WinAmp multiple security vulnerabilities
libmikmod multiple buffer overflows
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
