Stay away from the older versions of Winamp..read article :devil:
http://www.techworld.com/security/ne...fm?NewsID=1343
Printable View
Stay away from the older versions of Winamp..read article :devil:
http://www.techworld.com/security/ne...fm?NewsID=1343
:P I like what that Article had to say. :PQuote:
Originally posted by Mullyman@10 April 2004 - 22:53
Stay away from the older versions of Winamp..read article :devil:
http://www.techworld.com/security/ne...fm?NewsID=1343
"one of the most-used pieces of software in the world"
"It can deal with 30 different file types and has hundreds of plug-ins"
"WinAmp in its various forms has been downloaded tens of millions of times"\
:01: WinAMP! :01:
nah funkyQuote:
Originally posted by FuNkY CaPrIcOrN@11 April 2004 - 08:01
:01: WinAMP! :01:
:01: foorbar man! :01:
Winamp 2.x does not have Fasttracker 2 ".xm" media files support.Quote:
Originally posted by Mullyman@11 April 2004 - 03:53
Stay away from the older versions of Winamp..read article :devil:
http://www.techworld.com/security/ne...fm?NewsID=1343
Quote:
The ubiquitous WinAmp program - used to play a huge range of media files - can provide someone with system access simply by getting someone to visit a malicious website. It all has to do with how the software loads Fasttracker 2 ".xm" media files.
Read the whole article: B)
[QUOTE]The hole was found by NGSSoftware and you can find out a lot more about it, plus details to fill in the hole without having to upgrade here.
From nextgenss article:
[QUOTE]Name: Nullsoft Winamp 'in_mod.dll' Heap Overflow
Systems Affected: Nullsoft Winamp versions 2.91 to 5.02 (possibly older
versions, although this is not confirmed)
http://www.nextgenss.com/advisories/winampheap.txt