Loading
Multiple integer overflows in the in_avi.dll plugin in Winamp before 5.623 allow remote attackers to execute arbitrary code via an AVI file with a crafted value for (1) the number of streams or (2) the size of the RIFF INFO chunk, leading to a heap-based buffer overflow.
Use CWE-189, Nullsoft vendor hub and Winamp product page to widen CVE-2011-3834 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2011-4857, CVE-2010-4372 and CVE-2010-4371 for nearby disclosures in the same product family.