GoFuckYourself.com - Adult Webmaster Forum - View Single Post

smack · 11-27-2004, 01:30 AM

http://www.theregister.com/2004/11/25/winamp_vuln/

Quote:

A remotely exploitable stack based buffer overflow creates a means for hackers to take over machines running Winamp- providing they can trick users into running maliciously constructed files. For example, a malformed .m3u playlist file, hosted on a web site, would be automatically downloaded and opened in Winamp without any user interaction. The vulnerability, discovered by pen testers at Security-Assessment.com, arises from a buffer overflow in library file (called IN_CDDA.dll) used by Winamp.