Tuesday, May 19, 2009

Winamp VOC Processing Heap Buffer Overflow Vulnerability

Tobias Klein has discovered a vulnerability in Winamp, which can be exploited by malicious people to potentially compromise a user's system.

The vulnerability is caused due to the use of vulnerable libsndfile code. Successful exploitation may allow execution of arbitrary code.

The vulnerability is confirmed in version 5.552. Other versions may also be affected.

Solution:
Do not open untrusted files in Winamp.


Original Advisory:
http://trapkit.de/advisories/TKADV2009-006.txt

No comments:

Post a Comment