icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Winamp < 5.14 .M3U File Handling Buffer Overflow

Medium

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is using Winamp, a popular media player for Windows. It is possible that a remote attacker using a specially-crafted playlist can cause a buffer overflow in the version of Winamp installed on the remote host, resulting in a crash of the application or even execution of arbitrary code subject to the user's privileges. An attacker exploiting this flaw would need to be able to convince a Winamp user to open a malicious '.m3u' file.

Solution

Upgrade to version 5.14 or higher.