mailing list archives
Winamp .m3u fun again ;)
From: Sowhat <smaillist () gmail com>
Date: Thu, 16 Feb 2006 16:53:03 +0800
Winamp .m3u Remote Buffer Overflow Vulnerability (0day)
Winamp All versions (including 5.13)
WinAMP is a popular media player that supports various media and playlist
formats, including playlists in m3u or pls format.
This bug was found during Reading the following Advisory by
tombkeeper () NSFOCUS
btw: Alan McCaig (b0f) published a similar 0day vulnerability today,
so I think it's time to PUB this lame advisory tooooo.
No WORKAROUND this time.
plz check the vendor's website for update
OR, dont use Winamp ;)
Greetings to tombkeeper,killer,baozi, all 0x557 & XFOCUS guys
"Life is like a bug, Do you know how to exploit it ?"
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- Winamp .m3u fun again ;) Sowhat (Feb 16)