1. Home
  2. CVE Database
  3. CVE-2002-0284
LOW · 2.6

CVE-2002-0284

Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow m...

Vulnerability Description

Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow malicious web servers to obtain the pathname.

CVSS Score

2.6

LOW

AV:N/AC:H/Au:N/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
NullsoftWinamp2.77

References

FAQ

What is CVE-2002-0284?

CVE-2002-0284 is a vulnerability with a CVSS score of 2.6 (LOW). Winamp 2.78 and 2.77, when opening a wma file that requires a license, sends the full path of the Temporary Internet Files directory to the web page that is processing the license, which could allow m...

How severe is CVE-2002-0284?

CVE-2002-0284 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2002-0284?

Check the references section above for vendor advisories and patch information. Affected products include: Nullsoft Winamp.