CVE-2002-2195

Published: Dec 31, 2002Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response.

Affected (17)

Products: Nullsoft: Winamp

Nullsoft

1 product

Winamp

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Nullsoft Winamp	Version 2.60
Nullsoft Winamp	Version 2.61
Nullsoft Winamp	Version 2.62
Nullsoft Winamp	Version 2.64
Nullsoft Winamp	Version 2.65
Nullsoft Winamp	Version 2.70
Nullsoft Winamp	Version 2.70
Nullsoft Winamp	Version 2.71
Nullsoft Winamp	Version 2.72
Nullsoft Winamp	Version 2.73
Nullsoft Winamp	Version 2.73
Nullsoft Winamp	Version 2.74
Nullsoft Winamp	Version 2.75
Nullsoft Winamp	Version 2.76
Nullsoft Winamp	Version 2.78
Nullsoft Winamp	Version 2.79
Nullsoft Winamp	Version 2.80