Denial of Service : Winamp AIFF File Multiple Buffer Overflow Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.900197

Categoría: Denial of Service

Título: Winamp AIFF File Multiple Buffer Overflow Vulnerabilities

Resumen: Winamp is prone to a buffer overflow vulnerability.

Descripción: Summary:
Winamp is prone to a buffer overflow vulnerability.

Vulnerability Insight:
Application fails to play a large Common Chunk (COMM) header value in an AIFF
file and a large invalid value in an MP3 file.

Vulnerability Impact:
Attackers may leverage this issue by executing arbitrary codes in the context
of the affected application and can execute denial of service attacks on the
application.

Affected Software/OS:
Winamp version 5.541 and prior on Windows

Solution:
Upgrade to Winamp version 5.57 or later.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-0263
BugTraq ID: 33226
http://www.securityfocus.com/bid/33226
https://www.exploit-db.com/exploits/7742
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14756
http://secunia.com/advisories/33478
http://www.vupen.com/english/advisories/2009/0113

Copyright Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.900197
Categoría:	Denial of Service
Título:	Winamp AIFF File Multiple Buffer Overflow Vulnerabilities
Resumen:	Winamp is prone to a buffer overflow vulnerability.
Descripción:	Summary: Winamp is prone to a buffer overflow vulnerability. Vulnerability Insight: Application fails to play a large Common Chunk (COMM) header value in an AIFF file and a large invalid value in an MP3 file. Vulnerability Impact: Attackers may leverage this issue by executing arbitrary codes in the context of the affected application and can execute denial of service attacks on the application. Affected Software/OS: Winamp version 5.541 and prior on Windows Solution: Upgrade to Winamp version 5.57 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0263 BugTraq ID: 33226 http://www.securityfocus.com/bid/33226 https://www.exploit-db.com/exploits/7742 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14756 http://secunia.com/advisories/33478 http://www.vupen.com/english/advisories/2009/0113
Copyright	Copyright (C) 2009 Greenbone AG