Test ID:	1.3.6.1.4.1.25623.1.0.802926
Category:	Buffer overflow
Title:	Winamp 'AVI' File Multiple Heap-based Buffer Overflow Vulnerabilities
Summary:	Winamp is prone to heap-based buffer overflow vulnerabilities.
Description:	Summary: Winamp is prone to heap-based buffer overflow vulnerabilities. Vulnerability Insight: Errors in bmp.w5s, - when allocating memory using values from the 'strf' chunk to process BI_RGB video and UYVY video data within AVI files. - when processing decompressed TechSmith Screen Capture Codec (TSCC) data within AVI files. Vulnerability Impact: Successful exploitation will allow attackers to execute arbitrary code in the context of the application. Affected Software/OS: Winamp version before 5.63 build 3235 Solution: Upgrade to Winamp 5.63 build 3235 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-4045 BugTraq ID: 54131 http://www.securityfocus.com/bid/54131 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15335 http://secunia.com/advisories/46624
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.