This host is installed with Winamp and is prone to multiple vulnerabilities.

Successful exploitation will allow attackers to execute arbitrary code or cause a denial of service. Impact Level: Application.

upgrade to Winamp 5.6 or later, For updates refer to http://www.winamp.com/media-player

- Multiple integer overflow errors in in_nsv.dll in the in_nsv plugin allow remote attackers to execute arbitrary code via a crafted Table of Contents. - Multiple integer overflow errors in the in_midi plugin allow remote attackers to cause buffer overflow. - A buffer overflow error in the in_mod plugin allows remote attackers to have an unspecified impact via vectors related to the comment box. - An error in_mkv plugin allows remote attackers to cause a denial of service via a Matroska Video file containing a string with a crafted length. - An error in in_mp4 plugin allows remote attackers to cause a denial of service via crafted metadata or albumart in an invalid MP4 file.

Winamp versions prior to 5.6

• http://forums.winamp.com/showthread.php?t=324322
• http://forums.winamp.com/showthread.php?threadid=159785
• http://secunia.com/advisories/42004

---

Updated on 2015-03-25