← Back

CVE-2004-0820

nvd nist
Published: Aug 28, 2004Modified: Apr 16, 2026

JSON object

Loading...
4.6
Vector
AV:L/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 3.9 / Impact: 6.4
Source: NVD

Description

Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin file.

Affected (33)

Products: Nullsoft: Winamp
Nullsoft
1 product
Winamp
Configuration A
33 vulnerable
Vulnerable SoftwareAffected Versions
Nullsoft
Winamp
Version 2.10
Winamp
Version 2.24
Winamp
Version 2.4
Winamp
Version 2.50
Winamp
Version 2.5e
Winamp
Version 2.60
Winamp
Version 2.60
Winamp
Version 2.61
Winamp
Version 2.62
Winamp
Version 2.64
Winamp
Version 2.64
Winamp
Version 2.65
Winamp
Version 2.70
Winamp
Version 2.70
Winamp
Version 2.71
Winamp
Version 2.72
Winamp
Version 2.73
Winamp
Version 2.73
Winamp
Version 2.74
Winamp
Version 2.75
Winamp
Version 2.76
Winamp
Version 2.77
Winamp
Version 2.78
Winamp
Version 2.79
Winamp
Version 2.80
Winamp
Version 2.81
Winamp
Version 2.91
Winamp
Version 3.0
Winamp
Version 3.1
Winamp
Version 5.01
Winamp
Version 5.02
Winamp
Version 5.03
Winamp
Version 5.04

References (8)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.