CVE-2011-3834: Buffer Overflow

First published: Fri Dec 16 2011(Updated: )

Multiple integer overflows in the in_avi.dll plugin in Winamp before 5.623 allow remote attackers to execute arbitrary code via an AVI file with a crafted value for (1) the number of streams or (2) the size of the RIFF INFO chunk, leading to a heap-based buffer overflow.

Credit: PSIRT-CNA@flexerasoftware.com

Affected Software	Affected Version	How to fix
NullSoft Winamp	=5.57
NullSoft Winamp	=5.093
NullSoft Winamp	=5.552
NullSoft Winamp	=5.24
NullSoft Winamp	=5.111
NullSoft Winamp	=0.92
NullSoft Winamp	=5.09
NullSoft Winamp	=2.6
NullSoft Winamp	=2.9
NullSoft Winamp	=5.31
NullSoft Winamp	=5.05
NullSoft Winamp	=5.23
NullSoft Winamp	=0.20a
NullSoft Winamp	=5.112
NullSoft Winamp	=5.02
NullSoft Winamp	=5.551
NullSoft Winamp	=5.01
NullSoft Winamp	=5.53
NullSoft Winamp	=5.531
NullSoft Winamp	=5.33
NullSoft Winamp	=5.54
NullSoft Winamp	=5.5
NullSoft Winamp	=5.34
NullSoft Winamp	=5.6
NullSoft Winamp	=5.12
NullSoft Winamp	=2.91
NullSoft Winamp	=5.21
NullSoft Winamp	=5.094
NullSoft Winamp	=5.572
NullSoft Winamp	=5.3
NullSoft Winamp	=5.55
NullSoft Winamp	=5.04
NullSoft Winamp	=5.32
NullSoft Winamp	=1.90
NullSoft Winamp	=5.58
NullSoft Winamp	=5.56
NullSoft Winamp	=5.08d
NullSoft Winamp	=1.006
NullSoft Winamp	<=5.622
NullSoft Winamp	=5.11
NullSoft Winamp	=5.1
NullSoft Winamp	=5.51
NullSoft Winamp	=5.06
NullSoft Winamp	=5.541
NullSoft Winamp	=2.0
NullSoft Winamp	=5.07
NullSoft Winamp	=5.13
NullSoft Winamp	=2.10
NullSoft Winamp	=5.091
NullSoft Winamp	=5.52
NullSoft Winamp	=5.2
NullSoft Winamp	=2.95
NullSoft Winamp	=5.03
NullSoft Winamp	=5.0
NullSoft Winamp	=5.08e
NullSoft Winamp	=5.35
NullSoft Winamp	=5.22
NullSoft Winamp	=5.08c
NullSoft Winamp	=2.92
NullSoft Winamp	=5.581

Never miss a vulnerability like this again

Reference Links

collector/nvd-historical
collector/nvd-index
agent/severity
agent/author
agent/weakness
agent/references
agent/description
agent/type
agent/event
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/nullsoft
canonical/nullsoft winamp
version/nullsoft winamp/5.57
version/nullsoft winamp/5.093
version/nullsoft winamp/5.552
version/nullsoft winamp/5.24
version/nullsoft winamp/5.111
version/nullsoft winamp/0.92
version/nullsoft winamp/5.09
version/nullsoft winamp/2.6
version/nullsoft winamp/2.9
version/nullsoft winamp/5.31
version/nullsoft winamp/5.05
version/nullsoft winamp/5.23
version/nullsoft winamp/0.20a
version/nullsoft winamp/5.112
version/nullsoft winamp/5.02
version/nullsoft winamp/5.551
version/nullsoft winamp/5.01
version/nullsoft winamp/5.53
version/nullsoft winamp/5.531
version/nullsoft winamp/5.33
version/nullsoft winamp/5.54
version/nullsoft winamp/5.5
version/nullsoft winamp/5.34
version/nullsoft winamp/5.6
version/nullsoft winamp/5.12
version/nullsoft winamp/2.91
version/nullsoft winamp/5.21
version/nullsoft winamp/5.094
version/nullsoft winamp/5.572
version/nullsoft winamp/5.3
version/nullsoft winamp/5.55
version/nullsoft winamp/5.04
version/nullsoft winamp/5.32
version/nullsoft winamp/1.90
version/nullsoft winamp/5.58
version/nullsoft winamp/5.56
version/nullsoft winamp/5.08d
version/nullsoft winamp/1.006
version/nullsoft winamp/5.622
version/nullsoft winamp/5.11
version/nullsoft winamp/5.1
version/nullsoft winamp/5.51
version/nullsoft winamp/5.06
version/nullsoft winamp/5.541
version/nullsoft winamp/2.0
version/nullsoft winamp/5.07
version/nullsoft winamp/5.13
version/nullsoft winamp/2.10
version/nullsoft winamp/5.091
version/nullsoft winamp/5.52
version/nullsoft winamp/5.2
version/nullsoft winamp/2.95
version/nullsoft winamp/5.03
version/nullsoft winamp/5.0
version/nullsoft winamp/5.08e
version/nullsoft winamp/5.35
version/nullsoft winamp/5.22
version/nullsoft winamp/5.08c
version/nullsoft winamp/2.92
version/nullsoft winamp/5.581

CVE-2011-3834: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact