CVE-2013-4694

Stack-based buffer overflow in gen_jumpex.dll in Winamp before 5.64 Build 3418 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a package with a long Skin directory name.  NOTE: a second buffer overflow involving a long GUI Search field to ml_local.dll was also reported. However, since it is only exploitable by the user of the application, this issue would not cross privilege boundaries unless Winamp is running under a highly restricted environment such as a kiosk.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
nullsoftwinamp
𝑥
≤ 5.63
nullsoftwinamp
0.20a:a
nullsoftwinamp
0.92
nullsoftwinamp
1.006
nullsoftwinamp
1.90
nullsoftwinamp
2.0
nullsoftwinamp
2.6
nullsoftwinamp
2.9
nullsoftwinamp
2.10
nullsoftwinamp
2.91
nullsoftwinamp
2.92
nullsoftwinamp
2.95
nullsoftwinamp
5.0
nullsoftwinamp
5.01
nullsoftwinamp
5.1
nullsoftwinamp
5.02
nullsoftwinamp
5.2
nullsoftwinamp
5.3
nullsoftwinamp
5.03
nullsoftwinamp
5.04
nullsoftwinamp
5.05
nullsoftwinamp
5.5
nullsoftwinamp
5.06
nullsoftwinamp
5.07
nullsoftwinamp
5.08c:c
nullsoftwinamp
5.08d:d
nullsoftwinamp
5.08e:e
nullsoftwinamp
5.09
nullsoftwinamp
5.11
nullsoftwinamp
5.12
nullsoftwinamp
5.13
nullsoftwinamp
5.21
nullsoftwinamp
5.22
nullsoftwinamp
5.23
nullsoftwinamp
5.24
nullsoftwinamp
5.31
nullsoftwinamp
5.32
nullsoftwinamp
5.33
nullsoftwinamp
5.34
nullsoftwinamp
5.35
nullsoftwinamp
5.36
nullsoftwinamp
5.51
nullsoftwinamp
5.51:beta
nullsoftwinamp
5.52
nullsoftwinamp
5.53
nullsoftwinamp
5.54
nullsoftwinamp
5.54:beta
nullsoftwinamp
5.55
nullsoftwinamp
5.55:beta
nullsoftwinamp
5.56
nullsoftwinamp
5.57
nullsoftwinamp
5.58
nullsoftwinamp
5.59:beta
nullsoftwinamp
5.61
nullsoftwinamp
5.091
nullsoftwinamp
5.093
nullsoftwinamp
5.094
nullsoftwinamp
5.111
nullsoftwinamp
5.112
nullsoftwinamp
5.531
nullsoftwinamp
5.541
nullsoftwinamp
5.551
nullsoftwinamp
5.552
nullsoftwinamp
5.572
nullsoftwinamp
5.581
nullsoftwinamp
5.623
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://forums.winamp.com/showthread.php?t=364291
http://osvdb.org/94739
http://osvdb.org/94740
http://packetstormsecurity.com/files/122239/WinAmp-5.63-Buffer-Overflow.html
http://packetstormsecurity.com/files/122978
http://seclists.org/fulldisclosure/2013/Jul/4
http://www.exploit-db.com/exploits/26558
http://www.securityfocus.com/bid/60883
http://www.securitytracker.com/id/1030107
https://exchange.xforce.ibmcloud.com/vulnerabilities/85399
https://www.rcesecurity.com/2013/07/winamp-v5-64-fixes-several-code-execution-vulnerabilities-cve-2013-4694-cve-2013-4695
http://forums.winamp.com/showthread.php?t=364291
http://osvdb.org/94739
http://osvdb.org/94740
http://packetstormsecurity.com/files/122239/WinAmp-5.63-Buffer-Overflow.html
http://packetstormsecurity.com/files/122978
http://seclists.org/fulldisclosure/2013/Jul/4
http://www.exploit-db.com/exploits/26558
http://www.securityfocus.com/bid/60883
http://www.securitytracker.com/id/1030107
https://exchange.xforce.ibmcloud.com/vulnerabilities/85399
https://www.rcesecurity.com/2013/07/winamp-v5-64-fixes-several-code-execution-vulnerabilities-cve-2013-4694-cve-2013-4695