Serious Winamp flaw gets fix

By Dawn Kawamoto, CNET News.com
Wednesday, February 01, 2006 10:40 AM

Nullsoft has released an update to Winamp to fix a serious security vulnerability that opened up systems to remote attack.

The company posted version 5.13 of the media player online on Monday after Secunia and other security companies issued alerts about the problem. Malicious software exploiting the "extremely critical" flaw was already circulating on the Internet, according to Secunia's advisory.

The security hole, found in the latest version of Winamp 5.12, could lead to malicious attackers taking remote control of a Winamp user's system. Earlier versions of the media player may also be affected, Secunia said.

Even though the security company gave the vulnerability its highest rating for software threats, it noted that the number of people who use Winamp has declined over the years, so the scope of the problem is not as large as it once might have been.

"Winamp used to be the world's most popular MP3 player and is still quite popular, but as Windows Media Player has gotten better, some users have migrated over," said Thomas Kristensen, Secunia's chief technology officer.

The vulnerability could be exploited when a Winamp user visits a malicious Web site and a tainted media file is launched onto the person's system. A buffer overflow is triggered, which allows the attacker to take control of the computer without being constrained by security measures, Kristensen noted.

"We aren't aware of any systems that have been compromised yet, but it's likely to happen since there's exploit code out," Kristensen said.

Nullsoft, a division of America Online, is urging people to download the updated media player from the Winamp Web site. "Users attempting to launch the v. 5.12 player will be prompted with a pop-up message alerting them to upgrade to the secure Winamp v 5.13," AOL said.

The vulnerability, initially discovered by Atmaca, is not the first to be found in the Winamp software. In late 2004, a highly critical flaw was found in the playlist files for the Winamp player.


WORTHWHILE?

0

0 votes
Blog

Talkback 0 comments

There are currently no comments for this post.


Tech Jobs Now!

Search for your ideal tech job:

News from Countries/Region

Windows Server 2008 iSCSI multiple connected session modes

Enterprise Servers & Storage

For administrators using Windows Server 2008's iSCSI initiator, selecting the right connection policy is critical. Rick Vanover explains the options for the ease-of-entry storage protocol.


Read more »


 
Virtualize your way to cost savings
Build an infrastructure that is flexible, scalable, and economical, as you strive to become a truly agile business.

Red Hat Outlines Its Virtualization Strategy and Roadmap for 2009
» Watch the video



NUS Enterprise: An 'incubator without walls'

Blog thumbnail

Almost everyone has had dreams of owning their own shop, but most of us know also that it takes a fair amount of resources to open a new business, and..... by Eileen Yu

Read more »

Tags

  1. attack
  2. authentication and encryption
  3. blog
  4. data security
  5. e - mail
  6. hacking
  7. internet
  8. malware
  9. microsoft corp.
  10. network
  11. network security
  12. pc security
  13. researcher
  14. security
  15. security management
  16. software
  17. spam and phishing
  18. symantec corp.
  19. viruses and worms
  20. web