icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Nullsoft Winamp Large MP4 / M4A File Remote DoS

Low

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is using WinAMP, a popular media player that handles many files format (mp3, wavs and more). The remote version of this software is vulnerable to a denial of service vulnerability when it processes malformed .mp4 and .m4a files. An attacker may exploit this flaw by sending malformed files to a victim on the remote host.

Solution

Upgrade or patch according to vendor recommendations.