Detections
Analytics

CVE-2006-3228

high

Description

Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote attackers to execute arbitrary code via a crafted .mid (MIDI) file.

References

https://www.exploit-db.com/exploits/1935

http://www.winamp.com/about/article.php?aid=10694

http://www.attrition.org/pipermail/vim/2006-June/000893.html

http://www.attrition.org/pipermail/vim/2006-June/000892.html

http://secunia.com/advisories/20722

http://forums.winamp.com/showthread.php?threadid=248100

Details

Source: Mitre, NVD

Published: 2006-06-26

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.09103