Arbitrary Code Execution and Denial of Service Vulnerability in Winamp 5.666 Build 3516(x86) via Crafted .flv File

Arbitrary Code Execution and Denial of Service Vulnerability in Winamp 5.666 Build 3516(x86) via Crafted .flv File

CVE-2017-10725 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

Winamp 5.666 Build 3516(x86) allows attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Code Flow starting at in_flv!winampGetInModule2+0x00000000000009a8."

Learn more about our Web Application Penetration Testing UK.