Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Winamp buffer overflow - Internet Security | DShield SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Winamp buffer overflow
We have been monitoring a reported flaw with Winamp 5.12 and 5.13. A buffer overflow condition with a playlist containing a long file name can cause the application to crash at best and execute arbitrary code at worst. To date, we are not aware of any POC that uses this vulnerability sucesfully for malicious purposes. This problem is fixed in Winamp 5.2 so users are advised to update. More details about this issue can be found at http://secunia.com/advisories/18848.
Brian

22 Posts

Sign Up for Free or Log In to start participating in the conversation!