Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple heap-based buffer overflows in bmp.w5s in Winamp before 5.63 build 3235 allow remote attackers to execute arbitrary code via the (1) strf chunk in BI_RGB or (2) UYVY video data in an AVI file, or (3) decompressed TechSmith Screen Capture Codec (TSCC) data in an AVI file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Winamp AVI/IT文件多个内存破坏漏洞
Vulnerability Description
Nullsoft Winamp是美国Nullsoft公司开发的一套免费的媒体播放器软件,现为美国在线(AOL)旗下产品之一。该软件支持多种媒体格式、皮肤更换和插件扩展等,同时也具备最基本的播放列表和媒体库功能。 Winamp 5.63 build 3235之前版本中的bmp.w5s中存在多个基于堆的缓冲区溢出漏洞。远程攻击者可利用这些漏洞通过(1)BI_RGB中的strf块或(2)AVI文件中的UYVY视频数据或(3)AVI文件中的TechSmith Screen Capture Codec(TSCC)解
CVSS Information
N/A
Vulnerability Type
N/A