icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Winamp < 5.05 .WSZ File Handling Remote Code Execution

Medium

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote client is running a version of the Nullsoft Winamp media player that may be vulnerable to a remote code execution issue. This vulnerability may be used to remotely execute arbitrary code on the host by crafting a malicious .WSZ file (Winamp Skin).

Solution

Upgrade to Winamp 5.05 or higher.