CVE-2012-3890
UnknownEPSS 2.02%
Last modified
CVE-2012-3890 is a vulnerability of currently unknown severity. The in_mod plugin in Winamp before 5.63 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.. EPSS estimates a 2.02% chance of exploitation in the next 30 days.
Description
The in_mod plugin in Winamp before 5.63 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Nullsoft | Winamp | <= 5.623 | — |
| Nullsoft | Winamp | 0.20a | — |
| Nullsoft | Winamp | 0.92 | — |
| Nullsoft | Winamp | 1.006 | — |
| Nullsoft | Winamp | 1.90 | — |
| Nullsoft | Winamp | 2.0 | — |
| Nullsoft | Winamp | 2.6 | — |
| Nullsoft | Winamp | 2.9 | — |
| Nullsoft | Winamp | 2.10 | — |
| Nullsoft | Winamp | 2.91 | — |
| Nullsoft | Winamp | 2.92 | — |
| Nullsoft | Winamp | 2.95 | — |
| Nullsoft | Winamp | 5.0 | — |
| Nullsoft | Winamp | 5.01 | — |
| Nullsoft | Winamp | 5.1 | — |
| Nullsoft | Winamp | 5.02 | — |
| Nullsoft | Winamp | 5.2 | — |
| Nullsoft | Winamp | 5.3 | — |
| Nullsoft | Winamp | 5.03 | — |
| Nullsoft | Winamp | 5.04 | — |
| Nullsoft | Winamp | 5.05 | — |
| Nullsoft | Winamp | 5.5 | — |
| Nullsoft | Winamp | 5.06 | — |
| Nullsoft | Winamp | 5.07 | — |
| Nullsoft | Winamp | 5.08c | — |
| Nullsoft | Winamp | 5.08d | — |
| Nullsoft | Winamp | 5.08e | — |
| Nullsoft | Winamp | 5.09 | — |
| Nullsoft | Winamp | 5.11 | — |
| Nullsoft | Winamp | 5.12 | — |
| Nullsoft | Winamp | 5.13 | — |
| Nullsoft | Winamp | 5.21 | — |
| Nullsoft | Winamp | 5.22 | — |
| Nullsoft | Winamp | 5.23 | — |
| Nullsoft | Winamp | 5.24 | — |
| Nullsoft | Winamp | 5.31 | — |
| Nullsoft | Winamp | 5.32 | — |
| Nullsoft | Winamp | 5.33 | — |
| Nullsoft | Winamp | 5.34 | — |
| Nullsoft | Winamp | 5.35 | — |
| Nullsoft | Winamp | 5.36 | — |
| Nullsoft | Winamp | 5.51 | — |
| Nullsoft | Winamp | 5.52 | — |
| Nullsoft | Winamp | 5.53 | — |
| Nullsoft | Winamp | 5.54 | — |
| Nullsoft | Winamp | 5.55 | — |
| Nullsoft | Winamp | 5.56 | — |
| Nullsoft | Winamp | 5.57 | — |
| Nullsoft | Winamp | 5.59 | Beta |
| Nullsoft | Winamp | 5.61 | — |
Showing 50 of 59 affected configurations. See NVD for the full list.
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2012-3890?
The in_mod plugin in Winamp before 5.63 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a .IT file.
How severe is CVE-2012-3890?
Severity scoring for CVE-2012-3890 is pending analysis. The EPSS model estimates a 2.02% probability of exploitation in the next 30 days.
How do I fix CVE-2012-3890?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2012-3890?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST