Winamp < 5.34 Multiple Vulnerabilities

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains a multimedia application that is
affected by multiple vulnerabilities.

Description :

The remote host is using Winamp, a popular media player for Windows.

The version of Winamp installed on the remote Windows host reportedly
contains a flaw in its 'libsndfile.dll' library that may allow an
attacker to corrupt memory using a specially crafted Matlab (.MAT)
sound file and execute arbitrary code subject to the privileges of the
user.

In addition, it may also be affected by similar issues in its optional
Module Decoder (in_mod.dll) plugin involving malicious .IT and .S3M
files.

See also :

http://www.piotrbania.com/all/adv/nullsoft-winamp-libsndfile-adv.txt
http://www.piotrbania.com/all/adv/nullsoft-winamp-s3m_module-in_mod-adv.txt
http://www.piotrbania.com/all/adv/nullsoft-winamp-it_module-in_mod-adv.txt
http://www.securityfocus.com/archive/1/464889/30/0/threaded
http://www.securityfocus.com/archive/1/464890/30/0/threaded
http://www.securityfocus.com/archive/1/464893/30/0/threaded
http://forums.winamp.com/showthread.php?threadid=269831
http://www.winamp.com/player/version-history

Solution :

Upgrade to Winamp version 5.34 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 9.3
(CVSS2#E:ND/RL:U/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 25770 ()

Bugtraq ID: 23350
23351

CVE ID: CVE-2007-1921
CVE-2007-1922

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now