Winamp < 5.34 Multiple Vulnerabilities

High Nessus Plugin ID 25770


The remote Windows host contains a multimedia application that is affected by multiple vulnerabilities.


The remote host is using Winamp, a popular media player for Windows.

The version of Winamp installed on the remote Windows host reportedly contains a flaw in its 'libsndfile.dll' library that may allow an attacker to corrupt memory using a specially crafted Matlab (.MAT) sound file and execute arbitrary code subject to the privileges of the user.

In addition, it may also be affected by similar issues in its optional Module Decoder (in_mod.dll) plugin involving malicious .IT and .S3M files.


Upgrade to Winamp version 5.34 or later.

See Also

Plugin Details

Severity: High

ID: 25770

File Name: winamp_534.nasl

Version: $Revision: 1.15 $

Type: local

Agent: windows

Family: Windows

Published: 2007/07/27

Modified: 2016/05/06

Dependencies: 15817

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:U/RC:ND

Vulnerability Information

CPE: cpe:/a:nullsoft:winamp

Required KB Items: SMB/Winamp/Version

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2007/04/06

Reference Information

CVE: CVE-2007-1921, CVE-2007-1922

BID: 23350, 23351

OSVDB: 34430, 34431, 34432

CWE: 20