SecuritySpace - CVE-2009-3997

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID:	CVE-2009-3997
Description:	Integer overflow in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp before 5.57 might allow remote attackers to execute arbitrary code via an Oktalyzer file that triggers a heap-based buffer overflow.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3997 BugTraq ID: 37374 http://www.securityfocus.com/bid/37374 Bugtraq: 20091217 Secunia Research: Winamp Oktalyzer Parsing Integer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/508524/100/0/threaded http://secunia.com/secunia_research/2009-57/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15715 http://secunia.com/advisories/37495 http://www.vupen.com/english/advisories/2009/3575