CVE-2004-1396

Description

Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/18467

https://exchange.xforce.ibmcloud.com/vulnerabilities/18466

http://www.securityfocus.com/bid/11909

http://www.kb.cert.org/vuls/id/372968

http://securitytracker.com/alerts/2004/Dec/1012525.html

http://marc.info/?l=full-disclosure&m=110303988101973&w=2

http://marc.info/?l=bugtraq&m=110297310503541&w=2

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS