AfterDawn > News > Critical Winamp security flaw found and fixed

Critical Winamp security flaw found and fixed

Written by James Delahunty @ 31 Jan 2006 20:21 User comments (5)

Critical Winamp security flaw found and fixed Another "extremely critical" security flaw has been found in AOL's Winamp digital media player. It relates to how the player handles filenames that include a computer name. The vulnerability "can be exploited to cause a buffer overflow via a specially crafted playlist containing a filename starting with an overly long computer name," according to an advisory by Secunia. An attack can lead to arbitrary code being run on a user's computer. An exploit has already surfaced for the flaw, which affects version 5 of the software.
Winamp users will be happy to know that there was no time wasted in fixing this flaw. Winamp v5.13 has been released and all users are advised to update immediately. The exploit was created by ATmaCA, and uses a specially crafted playlist file to overflow the player. The PLS file can simply be loaded remotely through an IFRAME on a Web site.

You can download the latest version of Winamp from: http://www.afterdawn.com/software/audio_software/audio_players/winamp_v5.cfm

Source:
Betanews


More news

<Los Angeles sues Take-Two Interactive >UK software pirates targeted

Related news

Write a comment

5 user comments

11.2.2006 2:34
borhan9
Visit user's personal pageSend private message to this user
AfterDawn Addict

Im glad that they got to it quick but i find it too be a nifty lil trick :)

21.2.2006 2:49
Mr_Taz_UK
Visit user's personal pageSend private message to this user
Senior Member

Might help if you put a little more detiail here so ppl know what your talking about.


31.2.2006 10:17
borhan9
Visit user's personal pageSend private message to this user
AfterDawn Addict

@Mr_Taz_UK Mate this is a comment i made after reading the news article that comes with it u can find it here. http://www.afterdawn.com/news/archive/7262.cfm After reading the article it will make more sense :)

Edited by DVDBack23


"the mediocre teacher tells. the good teacher explains. the superior teacher demonstrates. the great teacher inspires."- William Aruthur Ward

42.2.2006 0:31
Mr_Taz_UK
Visit user's personal pageSend private message to this user
Senior Member

ah, I'll get my coat. Weird thing is i opened your post in the 'threads without a reply' section and the news article was not with it. One fer the staff here to look ay maybe. Soz for the confusion.

52.2.2006 1:06
borhan9
Visit user's personal pageSend private message to this user
AfterDawn Addict

No problem mate, well its always good for the members to find a glitch to help the admin out :) No Worries

Comment this article

If you do not have an AfterDawn.com account yet, please enter your nickname and email address below. An activation link will be emailed to you.

If you already have an AfterDawn.com account, please login using the next tab.

Login by using your Afterdawn.com -username or your email address.

Bold Italics Red color Quote Code Add image Add URL




Latest news

Hasbro to create toy based on Zynga games Hasbro to create toy based on Zynga games (09 Feb 2012 23:16)
Hasbro and Zynga have announced today a partnership in which the toy giant will create toys and games based on Zynga's social games and brands. With over 230 million monthly users, Zynga's ....
Samsung expects to sell 25 million 'smart' TVs this year Samsung expects to sell 25 million 'smart' TVs this year (09 Feb 2012 22:23)
Samsung has noted today that it expects to sell over 25 million "smart" TVs this year. Overall, the company expects to sell 50 million TVs this year. Samsung's "smart TVs" are Internet-enabled, ....
Kodak to stop making digital cameras Kodak to stop making digital cameras (09 Feb 2012 21:58)
Kodak has announced it will stop making digital cameras in an effort to focus on its more profitable businesses. Additionally, the company will also stop making digital picture frames. Both ....
More rumors: Apple to release 7-inch iPad this year, as well More rumors: Apple to release 7-inch iPad this year, as well (09 Feb 2012 19:56)
Analyst Erza Gottheil of Technology Business Research has suggested today that Apple could launch a 7-inch version of its iPad tablet this year. The analyst, just like others in the industry, ....
7 user comments
Microsoft defends Windows 8 walled garden for ARM Microsoft defends Windows 8 walled garden for ARM (09 Feb 2012 18:23)
Microsoft's response to rumors about Windows On ARM tablets suggests they will be more like Windows Phones for PCs.
1 user comment

Latest user comments

News archive

Subscribe to AfterDawn's weekly newsletter.

Popular products:

Hot forum topics right now:

More information:

© 1999-2012 AfterDawn Oy rev4585 (76ms)

For information about advertising on AfterDawn.com, please contact our media sales team.