• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Nullsoft Winamp Malformed Playlist File WMA Extention Remote Buffer Overflow Vulnerability

Winamp is susceptible to a buffer-overflow vulnerability when handling specially crafted playlist files.
An attacker may exploit this issue to gain unauthorized access to a computer with the privileges of the user that activated the vulnerable application.

Winamp version 5.094 is reported susceptible to this issue; other versions may also be affected.

This issue is similar to the one described in BID 16410 (Nullsoft Winamp Malformed Playlist File Handling Remote Buffer Overflow Vulnerability), but they likely exist in differing code paths in the application.