Signature Detail

Short Name	HTTP:WINAMP-SKIN-DOWNLOAD
Severity	Medium
Recommended	No
Category	HTTP
Keywords	WinAmp Skin Download
Release Date	2004/08/25
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: WinAmp Skin Download

This signature detects attempts to download compressed WinAmp skin files (WSZ or WAL). WinAmp skin files can contain executeables, which could enable attackers to place malicious software on target hosts.

Extended Description

Remote attackers can exploit this vulnerability to execute arbitrary code with the privileges of the current user.

References

CVE: CVE-2004-0820
URL: http://www.cknow.com/vtutor/FileExtensions.html
URL: http://www.auscert.org.au/render.html?it=4338

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: WinAmp Skin Download

Extended Description

References