PDA

Visualizza versione completa : Winamp Computer Name Handling Buffer Overflow Vul.


Giorgius
31-01-2006, 10.06.17
ATmaCA has discovered a vulnerability in Winamp, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error during the handling of filenames including a computer name. This can be exploited to cause a buffer overflow via a specially crafted playlist containing a filename starting with an overly long computer name (about 1040 bytes)...

Leggi: http://secunia.com/advisories/18649/

The Saint
31-01-2006, 12.18.24
La nuova versione (5.13) corregge proprio questo bug:

http://www.wintricks.it/news2/article.php?ID=11327

:)