AfterDawn > News > Serious security flaw in WinAmp 2.79

Serious security flaw in WinAmp 2.79

Written by Lasse Penttinen @ 29 Apr 2002 14:04

According to the SecurityForums.com, the WinAmp version 2.79 contains a potentially dangerous security flaw, which is related to ID3v2 tags and the Mini Browser function.
It is possible to modify an existing mp3 file in such a way that it can carry a virus. The virus is activated when the mp3 file is played in Winamp and can then infect other mp3 files found on harddrives or network shares. In order to protect yourself you need to upgrade to Winamp 2.80 or disable the minibrowser.

This is a fairly serious issue since WinAmp is such a popular piece of software and because MP3 files are generally considered safe. So to fix this issue one should disable the Mini Browser or upgrade to 2.80...or grab a copy of CoolPlayer from our software section ;)

SecurityForums.com

More news

<Fox abandons Movies.com venture >Gateway joins forces with EMusic
Previous Next

Related news

Write a comment

Comment this article

If you do not have an AfterDawn.com account yet, please enter your nickname and email address below. An activation link will be emailed to you.

If you already have an AfterDawn.com account, please login using the next tab.

Login by using your Afterdawn.com -username or your email address.

Bold Italics Red color Quote Code Add image Add URL




Latest news

Latest untethered jailbreak released for iOS 5.1.1 Latest untethered jailbreak released for iOS 5.1.1 (26 May 2012 18:15)
The Chronic Dev Team has released the latest version of their untethered jailbreak for iOS devices running 5.1.1. Says the blog post: "After copious amounts of work and many sleepless nights, ....
Siri blocked from use on IBM internal networks Siri blocked from use on IBM internal networks (26 May 2012 18:08)
IBM has understandably blocked the voice-activated digital assistant from its work networks. As 'Big Blue' confirms, Siri has been blocked due to the fact that Siri sends everything you ever ....
Cisco kills off development of 'Cius' tablet Cisco kills off development of 'Cius' tablet (26 May 2012 18:00)
Cisco has decided to pull the plug on its failed Cius tablet. The Cius, which was released in 2010 and aimed at enterprise customers, had a focus on business video conferencing and specifically ....
Galaxy S III to hit U.S. and Canada on June 20th? Galaxy S III to hit U.S. and Canada on June 20th? (26 May 2012 17:54)
Although Samsung unveiled the flagship device earlier this month, there has yet to be a set timetable for its release outside of Europe. Today, the Verge is reporting that the device will ....
5000 books return to Kindle Store after dispute ends 5000 books return to Kindle Store after dispute ends (26 May 2012 17:50)
Thanks to a contract negotiation dispute between Amazon and the Independent Publishers Group, the giant e-tailer pulled 5000 titles from the Kindle Store back in February. As of today, however, ....

Latest user comments

News archive

Subscribe to AfterDawn's weekly newsletter.

Popular products:

Hot forum topics right now:

More information:

© 1999-2012 AfterDawn Oy rev4882

For information about advertising on AfterDawn.com, please contact our media sales team.