In association with heise online

15 October 2007, 09:15

WinAmp 5.5 closes integer overflow hole

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Version 5.5 of WinAmp has been released to close an integer overflow hole in the module that supports the FLAC lossless audio compression format. According to iDefense, the hole could be exploited to cause a buffer overflow, which in turn would allow arbitrary malicious code to be injected.

Those using an older version of WinAmp should therefore be wary of clicking on a FLAC link on the Web. Depending on your specific configuration, your browser may pass the links on directly to win amp.


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit