CVE-2007-6403

Nullsoft Winamp 5.32 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6403. PoCs published by SYS 49152.

AI-analyzed exploit summary This Perl script exploits a stack overflow vulnerability in Nullsoft Winamp's MP4 tag parsing functionality. It generates a malicious RAR file that, when processed by Winamp, triggers a buffer overflow leading to remote code execution via a reverse shell on port 49152.

Description

Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certain menu option at the time of the attack.

Exploits (1)

exploitdb WORKING POC VERIFIED
by SYS 49152 · perllocalwindows
https://www.exploit-db.com/exploits/4703

This Perl script exploits a stack overflow vulnerability in Nullsoft Winamp's MP4 tag parsing functionality. It generates a malicious RAR file that, when processed by Winamp, triggers a buffer overflow leading to remote code execution via a reverse shell on port 49152.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Nullsoft Winamp 5.32
No auth needed
Prerequisites: Victim must open the malicious RAR file in Winamp and trigger the update function via ALT+3
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/484776/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3456
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15562

Scores

EPSS 0.0344
EPSS Percentile 87.5%

Details

CWE
CWE-119
Status published
Products (1)
winamp/nullsoft_winamp 5.32
Published Dec 17, 2007
Tracked Since Feb 18, 2026