CVE Vulnerabilities

CVE-2003-0765

Published: Sep 17, 2003 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The IN_MIDI.DLL plugin 3.01 and earlier, as used in Winamp 2.91, allows remote attackers to execute arbitrary code via a MIDI file with a large Track data size value.

Affected Software

Name Vendor Start Version End Version
Winamp Nullsoft 2.81 2.81
Winamp Nullsoft 2.91 2.91
Winamp Nullsoft 3.0 3.0
Winamp Nullsoft 3.1 3.1

References