Go Back   TechArena Community > Technology > Networking & Security
Become a Member!
Forgot your username/password?
Register Tags Active Topics RSS Search Mark Forums Read

Sponsored Links



Nullsoft fixes many vulnerabilities in new Winamp

Networking & Security


Reply
 
Thread Tools Search this Thread
  #1  
Old 23-12-2010
Member
 
Join Date: Oct 2010
Posts: 70
Nullsoft fixes many vulnerabilities in new Winamp
  

I have just started the course for learning the hacking techniques by tweaking up the code of the softwares on different IPs. Anyways, I am just a beginner to this field but I have recently heard something about the Nullsoft that they have made some changes in the new Winamp that has fixed some of bugs in the software preventing the user's system accessed by the attackers. Can you guys tell me what is an actually thing that has been secured by these changes?

Reply With Quote
  #2  
Old 23-12-2010
Member
 
Join Date: May 2008
Posts: 945
Re: Nullsoft fixes many vulnerabilities in new Winamp

Final version of Winamp 5.57 has been delivered to Windows users. They must already think to update their media player due to correcting several security vulnerabilities like execution of arbitrary code remotely. Winamp is fine to version 5.57.1. For these vulnerabilities, the company Secunia issued a security advisory highly critical. According to the explanations of French CERTA (Centre of Expertise Governmental Response and Computer Attacks Treatment), the mechanical operation requires opening a specially crafted file. Problems are caused by integer overflow errors in the decoder IN_MOD.DLL parsing of certain file types Oktalyzer, Ultratracker or Impulse Tracker. Other errors are present in the modules and png.w5s jpeg.w5s at the opening of PNG or JPEG files contained in an MP3 file.
Reply With Quote
  #3  
Old 23-12-2010
Member
 
Join Date: Jun 2009
Posts: 1,107
Re: Nullsoft fixes many vulnerabilities in new Winamp

A critical flaw has been discovered in the Winamp software. This vulnerability, using the ID3v2 tag maliciously filled causing a buffer overflow error and therefore an attacker to take control of your computer by running certain commands. The vulnerability has yet been tested on versions 5.6 and although it is relatively difficult to use initially, there is no doubt it will in the near future. Nullsoft (Winamp publishing company) has released a patch in the coming days.
Reply With Quote
  #4  
Old 23-12-2010
Member
 
Join Date: Nov 2008
Posts: 1,002
Re: Nullsoft fixes many vulnerabilities in new Winamp

The patches correct proposed new critical flaws disclosed recently. This loophole could be closed manually but treatment is now automated (for those who did not make the correction manually). The patch also correct a critical flaw that affects the color management module. This vulnerability could allow an attacker to compromise your data from your Nullsoft and gain control of it. It is advisable to update your system as quickly as possible via Nullsoft.
Reply With Quote
Reply

  TechArena Community > Technology > Networking & Security
Tags: , , ,



Thread Tools Search this Thread
Search this Thread:

Advanced Search


Similar Threads for: "Nullsoft fixes many vulnerabilities in new Winamp"
Thread Thread Starter Forum Replies Last Post
Web server Vulnerabilities Patches hRYHORIY Windows Software 5 20-06-2011 10:17 PM
Some vulnerabilities in Web applications AAeruJa Technology & Internet 5 01-02-2011 04:17 PM
Need to know about the vulnerabilities of asp website KennedII Technology & Internet 5 13-03-2010 11:09 PM
What are the vulnerabilities on Linux server? Sammiel Operating Systems 5 23-02-2010 12:35 AM
Multiple Vulnerabilities in Opera Big Fish Networking & Security 1 02-09-2008 01:35 PM


All times are GMT +5.5. The time now is 09:30 AM.