CVE-2009-3996

EPSS 9.9%

Published: 12/18/2009Modified: 4/28/2026

Description

Heap-based buffer overflow in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp before 5.57, and libmikmod 3.1.12, might allow remote attackers to execute arbitrary code via an Ultratracker file.

Affected packages (1)

Debian/libmikmodfrom 0, < 3.1.11-6.2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-3996