p2p news / p2pnet: AtmaCA has found an extremely critical security hole in AOL’s Winamp and a publicly available exploit is being reported.

The flaw is caused by a boundary error during the handling of filenames including a computer name, says Secunia, going on:

“This can be exploited to cause a buffer overflow via a specially crafted playlist containing a filename starting with an overly long computer name (about 1040 bytes).

“Successful exploitation allows execution of arbitrary code on a user’s system when e.g. a malicious website is visited.”

The vulnerability has been confirmed in version 5.12 and other versions may also be affected, says Secunia.

Another highly critical Winamp vulnerability was discovered last July.

Secunia doesn’t list any fixes or work-arounds.

=============

UPDATE: - The security hole only puts Winamp 5.12 users at risk, says TechWorld and they’ll, "now be greeted with a popup message advising them to update to the newer version of the software, said AOL spokeswoman Deana Graffeo. Earlier versions of the product are not vulnerable, she said."

Also See:
Secunia – Winamp Computer Name Handling Buffer Overflow Vulnerability, January 31, 2006
highly critical – Highly critical Winamp flaw, January 21, 2005

This entry was posted on Tuesday, January 31st, 2006 at 7:42 am and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 2557 times