Bugtraq: Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion Stack Overflow

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion Stack Overflow

From: Werner Van Belle <werner () yellowcouch org>
Date: Wed, 1 Aug 2007 21:46:28 +0200

How would you name it? "Winamp 5.35 (Infinite) M3U File Inclusion Stack
Overflow Exception"?


I actually agree with the original poster. A stack overflow in a client side 
program such as winamp could hardly be labeled 'denial of service'. A user 
program is in general not 'a service'. With your definition every segfault 
could be labeled 'denial of service'.

In any case, I liked your new title much better because it is more accurate 
and does not sound as threatening to server administrators as your original 
one :)

With kind regards,

-- 
Dr. Werner Van Belle
http://werner.yellowcouch.org/

Attachment: signature.asc
Description: This is a digitally signed message part.

By Date By Thread

Current thread:

Re: Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion DoS Vulnerability bugtraq (Aug 01)
- Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion Stack Overflow Werner Van Belle (Aug 03)