OldVersion.com Points System. When you upload software to oldversion.com you get rewarded by points. For every field that is filled out correctly, points will be rewarded, some fields are optional but the more you provide the more you will get rewarded! Winamp 2.78 Windows Commander 4.54 Windows Registry Guide 3.4 WinZip 8.0a WSFTP LE 5.08. Nullsoft Winamp version 2.78: Security vulnerabilities, exploits, vulnerability statistics, CVSS scores and references (e.g.: CVE-2009-1234 or 2010-1234 or 20101234) Log In Register.
ModifiedThis vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.
Current Description
Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.
Analysis Description
Winamp 2.78
Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.
Severity
CVSS 3.x Severity and Metrics:
NVD Analysts use publicly available information to associate vector strings and CVSS scores. We also display any CVSS information provided within the CVE List from the CNA.
Note: NVD Analysts have not published a CVSS score for this CVE at this time. NVD Analysts use publicly available information at the time of analysis to associate CVSS vector strings.
Is Winamp Safe
Weakness Enumeration
Is Winamp Still Available
| CWE-ID | CWE Name | Source |
|---|---|---|
| NVD-CWE-Other | Other | NIST |
Known Affected Software Configurations Switch to CPE 2.2
What Is Winamp Used For
Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.
Change History
2 change records found show changes