Bug in Winamp

Bug in Winamp

FrSIRT rated as Critical the vulnerability that has been identified in Winamp, which could be exploited by remote attackers to execute arbitrary commands. This flaw is due to a buffer overflow error when processing a specially crafted playlist (“.pls” file) containing a malformed “File” tag, which could be exploited by remote attackers to execute arbitrary commands and take complete control of an affected system without any user-interaction via a specially crafted web page.
The solution is the upgrade to Winamp version 5.13 : http://www.winamp.com/player/

Italian Version

FrSIRT ha notificato come critica una vulnerabilità che è stata identificata in Winamp, e che potrebbe essere sfruttata da eventuali aggressori per eseguire dei comandi remoti sul Pc. La falla è dovuta ad un buffer overflow innescato da una playlist (file “.pls”) contenente il tag File1 malformato. E’ sufficiente indurre un utente ad aprire un file “.pls” dannoso, eventualmente inglobato all’interno di una pagina web. La soluzione è fare un upgrade di Winamp alla versione 5.13 disponibile qui

Link: About bug in Winamp Winamp 5.13 solves the bug

By | 2006-02-01T14:12:06+00:00 February 1st, 2006|Voice over Net|4 Comments

About the Author:

Growth Hacker, Digital Marketing expert. I work as the Global Social Media Manager of Automobili Lamborghini. Contact me

4 Comments

  1. Dario Salvelli 1 February 2006 at 14:17 - Reply

    @Calupict: It is a duty ! ;) Goes back to find me if you want.

  2. calupict 1 February 2006 at 14:15 - Reply

    Thanks for the information.
    Downloading the new now.

  3. calupict 9 February 2006 at 11:48 - Reply

    adding you to my blogroll.

  4. Dario Salvelli 9 February 2006 at 14:38 - Reply

    @calupict: Thanks,your blog is interesting !

Leave A Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.