TUCoPS :: Windows Apps :: v7-2550.htm

Winamp 5.12 - 0day exploit - code execution through playlist
Winamp 5.12 - 0day exploit - code execution through playlist
Winamp 5.12 - 0day exploit - code execution through playlist


The current version of winamp contains an error in its playlist parsing allowing malicious users to
execute code via a prepared playlist.

This bug can even be triggered through a website - without user interaction - by linking to a pls
file in an IFRAME tag.

Windows DEP (Data Execution Prevention) will stop this bug. If you dont have DEP its strongly
advised to delete Winamp until a non vulnerable version is released.

More information (in german, babelfish is your friend :) at http://www.heise.de/newsticker/meldung/68981 


Greets,
carol

http://www.tarifchecks.de/href="http://www.tarifchecks.de/">http://www.tarifchecks.de/ 
http://autoversicherung.einsurance.de/href="http://autoversicherung.einsurance.de/">http://autoversicherung.einsurance.de/

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH