Posted by: Burgin
MP3 Exploit found on Windows XP and Winamp - 20/12/2002 11:07
Doesn't look like someone has already posted this in this forum so I will do my civic duty.
There are two related but distinct buffer flow vulnerabilities that could allow malicious code to be delivered and executed.
1) Details for the Windows XP Bug can be found here http://www.foundstone.com/knowledge/randd-advisories-display.html?id=339. A fix can be found here, http://www.microsoft.com/technet/security/bulletin/MS02-072.asp.
2) The WinAmp bug affects both 2.8 and 3.0. To fix them, you need to redownload the latest builds for 2.8 or 3.0. Details are here, http://www.foundstone.com/knowledge/randd-advisories-display.html?id=338.
There are two related but distinct buffer flow vulnerabilities that could allow malicious code to be delivered and executed.
1) Details for the Windows XP Bug can be found here http://www.foundstone.com/knowledge/randd-advisories-display.html?id=339. A fix can be found here, http://www.microsoft.com/technet/security/bulletin/MS02-072.asp.
2) The WinAmp bug affects both 2.8 and 3.0. To fix them, you need to redownload the latest builds for 2.8 or 3.0. Details are here, http://www.foundstone.com/knowledge/randd-advisories-display.html?id=338.