Информационная безопасность
[RU] switch to English


Многочисленные уязвимости в Nullsoft WinAmp (multiple bugs)
Опубликовано:6 апреля 2007 г.
Источник:
SecurityVulns ID:7539
Тип:удаленная
Уровень опасности:
6/10
Описание:Многочисленные повреждения памяти в различных модулях.
Затронутые продукты:NULLSOFT : Winamp 5.33
CVE:CVE-2007-1922 (The Impulse Tracker (IT) and ScreamTracker 3 (S3M) modules in IN_MOD.DLL in AOL Nullsoft Winamp 5.33 allows remote attackers to execute arbitrary code via a crafted (1) .IT or (2) .S3M file containing integer values that are used as memory offsets, which triggers memory corruption.)
 CVE-2007-1921 (LIBSNDFILE.DLL, as used by AOL Nullsoft Winamp 5.33 and possibly other products, allows remote attackers to execute arbitrary code via a crafted .MAT (MATLAB sound) file that contains a value that is used as an offset, which triggers memory corruption.)
Оригинальный текстdocumentPiotr Bania, [Full-disclosure] AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption (06.04.2007)
 documentPiotr Bania, [Full-disclosure] AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption (06.04.2007)
 documentPiotr Bania, [Full-disclosure] AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero) (06.04.2007)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород