This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.
The remote Windows host contains a multimedia application that is
affected by multiple buffer overflow vulnerabilities.
The remote host is using Winamp, a popular media player for Windows.
The version of Winamp installed on the remote Windows host contains a
plug-in to handle playing FLAC files that contains several integer
buffer overflow vulnerabilities. If an attacker can trick a user on
the affected host into opening a specially crafted FLAC file, he may
be able to leverage this issue to execute arbitrary code on the host
subject to the user's privileges.
See also :
Either upgrade to Winamp version 5.5 or later or remove the FLAC Input
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false