Exploitation Summary
EIP tracks 1 public exploit for CVE-2002-2195. PoCs published by anonymous.
AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Winamp 2.80a and earlier versions during version checks. It crafts a malicious HTTP response to trigger arbitrary code execution via a connect-back shell.
Description
Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by anonymous · cremotewindows
https://www.exploit-db.com/exploits/21595
This exploit targets a buffer overflow vulnerability in Winamp 2.80a and earlier versions during version checks. It crafts a malicious HTTP response to trigger arbitrary code execution via a connect-back shell.
Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target:
Nullsoft Winamp <= 2.80a
No auth needed
Prerequisites:
Attacker must control DNS resolution for www.winamp.com or intercept traffic · Target must have Winamp configured to check for updates
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Exploit vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9488.php
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://online.securityfocus.com/archive/1/280786
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/5170
Scores
EPSS
0.0469
EPSS Percentile
90.6%
Details
Status
published
Products (15)
nullsoft/winamp
2.60
nullsoft/winamp
2.61
nullsoft/winamp
2.62
nullsoft/winamp
2.64
nullsoft/winamp
2.65
nullsoft/winamp
2.70 (2 CPE variants)
nullsoft/winamp
2.71
nullsoft/winamp
2.72
nullsoft/winamp
2.73 (2 CPE variants)
nullsoft/winamp
2.74
... and 5 more
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026