CVE-2006-3228

Published: Jun 26, 2006Modified: Apr 16, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23, including 5.21, allows remote attackers to execute arbitrary code via a crafted .mid (MIDI) file.

Affected (30)

Products: Nullsoft: Winamp

Nullsoft

1 product

Winamp

Configuration A

30 vulnerable

Vulnerable Software	Affected Versions
Nullsoft Winamp	Up to 5.23
Nullsoft Winamp	Version 2.90
Nullsoft Winamp	Version 2.91
Nullsoft Winamp	Version 2.95
Nullsoft Winamp	Version 3.0
Nullsoft Winamp	Version 3.1
Nullsoft Winamp	Version 5.0.1
Nullsoft Winamp	Version 5.0.2
Nullsoft Winamp	Version 5.01
Nullsoft Winamp	Version 5.02
Nullsoft Winamp	Version 5.03
Nullsoft Winamp	Version 5.03a
Nullsoft Winamp	Version 5.04
Nullsoft Winamp	Version 5.05
Nullsoft Winamp	Version 5.06
Nullsoft Winamp	Version 5.07
Nullsoft Winamp	Version 5.08c
Nullsoft Winamp	Version 5.08d
Nullsoft Winamp	Version 5.08e
Nullsoft Winamp	Version 5.091
Nullsoft Winamp	Version 5.093
Nullsoft Winamp	Version 5.094
Nullsoft Winamp	Version 5.09
Nullsoft Winamp	Version 5.0
Nullsoft Winamp	Version 5.11
Nullsoft Winamp	Version 5.12
Nullsoft Winamp	Version 5.13
Nullsoft Winamp	Version 5.1
Nullsoft Winamp	Version 5.21
Nullsoft Winamp	Version 5.2