ID CVE-2006-3228
Summary Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote attackers to execute arbitrary code via a crafted .mid (MIDI) file.
References
Vulnerable Configurations
  • cpe:2.3:a:nullsoft:winamp:2.90
    cpe:2.3:a:nullsoft:winamp:2.90
  • Nullsoft Winamp 2.91
    cpe:2.3:a:nullsoft:winamp:2.91
  • Nullsoft Winamp 2.95
    cpe:2.3:a:nullsoft:winamp:2.95
  • cpe:2.3:a:nullsoft:winamp:3.0
    cpe:2.3:a:nullsoft:winamp:3.0
  • cpe:2.3:a:nullsoft:winamp:3.1
    cpe:2.3:a:nullsoft:winamp:3.1
  • Nullsoft Winamp 5.0
    cpe:2.3:a:nullsoft:winamp:5.0
  • cpe:2.3:a:nullsoft:winamp:5.0.1
    cpe:2.3:a:nullsoft:winamp:5.0.1
  • cpe:2.3:a:nullsoft:winamp:5.0.2
    cpe:2.3:a:nullsoft:winamp:5.0.2
  • Nullsoft Winamp 5.01
    cpe:2.3:a:nullsoft:winamp:5.01
  • cpe:2.3:a:nullsoft:winamp:5.1
    cpe:2.3:a:nullsoft:winamp:5.1
  • Nullsoft Winamp 5.02
    cpe:2.3:a:nullsoft:winamp:5.02
  • Nullsoft Winamp 5.2
    cpe:2.3:a:nullsoft:winamp:5.2
  • Nullsoft Winamp 5.03
    cpe:2.3:a:nullsoft:winamp:5.03
  • cpe:2.3:a:nullsoft:winamp:5.03a
    cpe:2.3:a:nullsoft:winamp:5.03a
  • Nullsoft Winamp 5.04
    cpe:2.3:a:nullsoft:winamp:5.04
  • Nullsoft Winamp 5.05
    cpe:2.3:a:nullsoft:winamp:5.05
  • Nullsoft Winamp 5.06
    cpe:2.3:a:nullsoft:winamp:5.06
  • Nullsoft Winamp 5.07
    cpe:2.3:a:nullsoft:winamp:5.07
  • Nullsoft Winamp 5.08c
    cpe:2.3:a:nullsoft:winamp:5.08c
  • Nullsoft Winamp 5.08d
    cpe:2.3:a:nullsoft:winamp:5.08d
  • Nullsoft Winamp 5.08e
    cpe:2.3:a:nullsoft:winamp:5.08e
  • Nullsoft Winamp 5.09
    cpe:2.3:a:nullsoft:winamp:5.09
  • Nullsoft Winamp 5.11
    cpe:2.3:a:nullsoft:winamp:5.11
  • Nullsoft Winamp 5.12
    cpe:2.3:a:nullsoft:winamp:5.12
  • Nullsoft Winamp 5.13
    cpe:2.3:a:nullsoft:winamp:5.13
  • Nullsoft Winamp 5.21
    cpe:2.3:a:nullsoft:winamp:5.21
  • Nullsoft Winamp 5.23
    cpe:2.3:a:nullsoft:winamp:5.23
  • Nullsoft Winamp 5.091
    cpe:2.3:a:nullsoft:winamp:5.091
  • Nullsoft Winamp 5.093
    cpe:2.3:a:nullsoft:winamp:5.093
  • Nullsoft Winamp 5.094
    cpe:2.3:a:nullsoft:winamp:5.094
CVSS
Base: 9.3 (as of 26-06-2006 - 20:29)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
description Winamp. CVE-2006-3228. Dos exploit for windows platform
file exploits/windows/dos/1935.cpp
id EDB-ID:1935
last seen 2016-01-31
modified 2006-06-20
platform windows
port
published 2006-06-20
reporter BassReFLeX
source https://www.exploit-db.com/download/1935/
title Winamp <= 5.21 - Midi File Header Handling Buffer Overflow PoC
type dos
nessus via4
  • NASL family Windows
    NASL id WINAMP_524.NASL
    description The remote host is using Winamp, a popular media player for Windows. The version of Winamp installed on the remote Windows host reportedly contains a buffer overflow in the MIDI plugin ('in_midi.dll') that can be exploited using a MIDI file with a specially crafted header to crash the affected application or possibly even execute arbitrary code remotely, subject to the privileges of the user running the application.
    last seen 2019-02-21
    modified 2018-08-15
    plugin id 21738
    published 2006-06-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21738
    title Winamp < 5.24 in_midi.dll MIDI File Processing Overflow
  • NASL family Windows
    NASL id WINAMP_522.NASL
    description The remote host is using Winamp, a popular media player for Windows. The version of Winamp installed on the remote Windows host reportedly contains a buffer overflow in the 'in_midi.dll' library that can be exploited using a specially crafted MIDI file to either crash the affected application or possibly even execute arbitrary code remotely, subject to the privileges of the user running the application.
    last seen 2019-02-21
    modified 2018-08-06
    plugin id 21733
    published 2006-06-20
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21733
    title Winamp < 5.22 Malformed Midi File Handling Buffer Overflow
refmap via4
confirm
exploit-db 1935
secunia 20722
vim 20060622 Winamp security vagueness
Last major update 07-03-2011 - 21:38
Published 26-06-2006 - 16:05
Last modified 18-10-2017 - 21:29
Back to Top