Ravens PHP Scripts

Winamp libsndfile.dll CAF Processing Integer Overflow Vulnerability
Date: Wednesday, March 04, 2009 @ 00:12:12 PST
Topic: Security


VERIFY ADVISORY: http://secunia.com/advisories/33981/

CRITICAL: Highly critical

DESCRIPTION: Secunia Research has discovered a vulnerability in Winamp, which can be exploited by malicious people to compromise a user's system. The vulnerability is confirmed in versions 5.541 and 5.55. Other versions may also be affected.

The vulnerability is caused due to the use of vulnerable libsndfile code. Successful exploitation may allow execution of arbitrary code. For more information: SA33980

SOLUTION: Do not open untrusted CAF files in Winamp.

PROVIDED AND/OR DISCOVERED BY: Alin Rad Pop, Secunia Research

ORIGINAL ADVISORY: http://secunia.com/secunia_research/2009-8/

OTHER REFERENCES: SA33980: http://secunia.com/advisories/33980/

This article comes from Ravens PHP Scripts

The URL for this story is: