Winamp < 3.0b Multiple File Handling DoS
High Nessus Plugin ID 11530
SynopsisThe remote Windows host contains an application affected by multiple vulnerabilities.
DescriptionThe remote host is using Winamp3, a popular media player which handles many files format (mp3, wavs and more...)
This version suffers from multiple buffer overflow and denial of service issues that can be triggered by specially crafted b4s files.
To perform an attack, the attack would have to send a malformed playlist (.b4s) to the user of this host who would then have to load it by double clicking on it.
Note that since .b4s are XML-based files, most antivirus programs will let them in.
SolutionUpgrade to Winamp 3.0b or later.