CVE-2000-0049

Winamp - Buffer Overflow via Long Entry in .pls File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0049. PoCs published by Steve Fewer.

AI-analyzed exploit summary This exploit generates a malicious .pls file that triggers a stack-based buffer overflow in Winamp 2.10, allowing arbitrary code execution via a crafted playlist entry exceeding 580 bytes. The payload includes NOP sleds, a hardcoded EIP overwrite, and shellcode.

Description

Buffer overflow in Winamp client allows remote attackers to execute commands via a long entry in a .pls file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Steve Fewer · cdoswindows

https://www.exploit-db.com/exploits/19720

View Code ZIP pw:eip

This exploit generates a malicious .pls file that triggers a stack-based buffer overflow in Winamp 2.10, allowing arbitrary code execution via a crafted playlist entry exceeding 580 bytes. The payload includes NOP sleds, a hardcoded EIP overwrite, and shellcode.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Winamp 2.10

No auth needed

Prerequisites: Victim must open the malicious .pls file in Winamp 2.10

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/925

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/12022

Scores

EPSS 0.0208

EPSS Percentile 79.0%

Details

Status published

Products (2)

nullsoft/winamp 2.0

nullsoft/winamp 2.10

Published Jan 04, 2000

Tracked Since Feb 18, 2026