CVE Vulnerabilities

CVE-2002-0284

Published: May 31, 2002 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.

Affected Software

Name Vendor Start Version End Version
Winamp Nullsoft 2.78 2.78
Winamp Nullsoft 2.77 2.77

References