SB2017070518 - Multiple vulnerabilities in Nullsoft Winamp

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Buffer overflow (CVE-ID: CVE-2017-10725)

The vulnerability allows a local authenticated user to execute arbitrary code.

Winamp 5.666 Build 3516(x86) allows attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Code Flow starting at in_flv!winampGetInModule2+0x00000000000009a8."

2) Buffer overflow (CVE-ID: CVE-2017-10726)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address may be used as a return value starting at f263!GetWinamp5SystemComponent+0x0000000000001951."

3) Buffer overflow (CVE-ID: CVE-2017-10727)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Branch Selection starting at in_mp3!DeleteAudioDecoder+0x000000000000762f."

Remediation

Install update from vendor's website.

References

• https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10725
• https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10726
• https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10727