This script is Copyright (C) 2008-2011 Tenable Network Security, Inc.
The remote Windows host contains a multimedia application that is
affected by multiple buffer overflow vulnerabilities.
The remote host is using Winamp, a popular media player for Windows.
The version of Winamp installed on the remote Windows host reportedly
contains two stack-based buffer overflows in 'in_mp3.dll' when parsing
Ultravox streaming metadata that can be triggered by overly-long
'<artist>' and '<name>' tag values. If an attacker can trick a user
on the affected host into opening a specially crafted file, he could be
able to leverage this issue to execute arbitrary code on the host
subject to the user's privileges.
See also :
Upgrade to Winamp version 5.52 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true