Signature Detail
Short Name |
HTTP:STC:DL:WINAMP-MAL-PLS |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Nullsoft Winamp Malformed Playlist File Buffer Overflow |
Release Date |
2011/12/19 |
Update Number |
2049 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Nullsoft Winamp Malformed Playlist File Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Nullsoft Winamp. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application. Winamp 5.11 and 5.12 are affected by this vulnerability.
Extended Description
Winamp is susceptible to a buffer-overflow vulnerability when handling specially crafted playlist files. An attacker may exploit this issue to gain unauthorized access to a computer with the privileges of the user that activated the vulnerable application. Winamp 5.11 and 5.12 are reportedly affected by this issue.
Affected Products
- NullSoft Winamp 5.11
- NullSoft Winamp 5.12
References
- BugTraq: 16410
- CVE: CVE-2006-0476