‘Critical’ exploit hits Winamp

Winamp’s Web site currently has no news of the bug, or any information about a possible patch.

The site’s support forums also lack any talk of the bug, with the exception of one user who provided a link to the proof-of-concept code.

According to Information Week, Secunia says the bug in Winamp 5.12 is "extremely critical".

An attacker can take complete control of a PC by getting a user to download a malicious audio playlist that uses a filename larger than about 1 040-bytes.

Because Winamp automatically begins playing a playlist once it is downloaded, hackers could easily attack PCs equipped with the music player.

INet-Bridge

Don't miss the latest news

• Add MyBroadband as a preferred source in Google Search
• Follow MyBroadband on Google News