Definition

Multiple heap-based buffer overflows in AOL Nullsoft WinAmp before 5.31

oval:org.mitre.oval:def:15686

Multiple heap-based buffer overflows in AOL Nullsoft WinAmp before 5.31 allow user-assisted remote attackers to execute arbitrary code via a crafted (1) ultravox-max-msg header to the Ultravox protocol handler or (2) unspecified Lyrics3 tags.

Family:

windows

Status:

ACCEPTED

Platform(s):

Microsoft Windows Vista
Microsoft Windows Server 2003
Microsoft Windows 7
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2008

Class:

vulnerability

Reference(s):

CVE-2006-5567

Product(s):

Winamp