Winamp < 5.31 Multiple Buffer Overflows

High Nessus Plugin ID 22921


The remote Windows host contains a multimedia application that is susceptible to multiple buffer overflow attacks.


The remote host is using Winamp, a popular media player for Windows.

The version of Winamp installed on the remote Windows host reportedly contains two overflow flaws, one involving the 'ultravox-max-msg' header used in its support of the Ultravox protocol and the other in its Ultravox Lyrics3 parsing code. Using a specially crafted stream, a remote attacker may be able to leverage these issues to execute arbitrary code subject to the privileges of the user.


Upgrade to Winamp version 5.31 or later.

See Also

Plugin Details

Severity: High

ID: 22921

File Name: winamp_531.nasl

Version: $Revision: 1.14 $

Type: local

Agent: windows

Family: Windows

Published: 2006/10/26

Modified: 2011/10/06

Dependencies: 15817

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:nullsoft:winamp

Required KB Items: SMB/Winamp/Version

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2006/10/25

Reference Information

CVE: CVE-2006-5567

BID: 20744

OSVDB: 30051, 30052